A Novel Approach to Onboarding Secure Cloud-Native Acquisitions into Enterprise Solutions

2021 International Conference on Disruptive Technologies for Multi-Disciplinary Research and Applications (CENTCON) Pub Date : 2021-11-19 DOI:10.1109/CENTCON52345.2021.9688193

S. Vadlamudi, Jenifer Sam

{"title":"A Novel Approach to Onboarding Secure Cloud-Native Acquisitions into Enterprise Solutions","authors":"S. Vadlamudi, Jenifer Sam","doi":"10.1109/CENTCON52345.2021.9688193","DOIUrl":null,"url":null,"abstract":"Large enterprises work upon countless strategies for creating value with acquisitions as they enter a transformational merger. Cloud-native applications, being loosely coupled and designed to deliver user requirements at the pace a business needs are the natural choice for enterprise acquisitions. Culture change management and process compliance are some key areas where acquisitions find it difficult to adapt to the enterprise standards. To make this journey smooth, it is important to have a guided journey methodology with simplified engagement between both parties. One of the key dimensions where such a collaboration-centric approach is required is in security. In this paper, we examine the current challenges in onboarding cloud-native acquisitions to bring their security compliance posture at par with the current enterprise standards. We explore areas such as secure software development lifecycle management, tools and processes followed and provide recommendations around improving the overall security stance of the acquired product.","PeriodicalId":103865,"journal":{"name":"2021 International Conference on Disruptive Technologies for Multi-Disciplinary Research and Applications (CENTCON)","volume":"158 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Disruptive Technologies for Multi-Disciplinary Research and Applications (CENTCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CENTCON52345.2021.9688193","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Large enterprises work upon countless strategies for creating value with acquisitions as they enter a transformational merger. Cloud-native applications, being loosely coupled and designed to deliver user requirements at the pace a business needs are the natural choice for enterprise acquisitions. Culture change management and process compliance are some key areas where acquisitions find it difficult to adapt to the enterprise standards. To make this journey smooth, it is important to have a guided journey methodology with simplified engagement between both parties. One of the key dimensions where such a collaboration-centric approach is required is in security. In this paper, we examine the current challenges in onboarding cloud-native acquisitions to bring their security compliance posture at par with the current enterprise standards. We explore areas such as secure software development lifecycle management, tools and processes followed and provide recommendations around improving the overall security stance of the acquired product.

查看原文本刊更多论文

将安全的云原生收购纳入企业解决方案的新方法

大型企业在进行转型合并时，会制定无数通过收购创造价值的策略。云原生应用程序是松散耦合的，旨在以业务需求的速度交付用户需求，这是企业收购的自然选择。文化变更管理和过程遵从性是收购发现难以适应企业标准的一些关键领域。为了使这段旅程顺利进行，重要的是要有一个引导的旅程方法，简化双方之间的接触。需要这种以协作为中心的方法的一个关键方面是安全性。在本文中，我们研究了云原生收购中当前面临的挑战，以使其安全合规状态与当前的企业标准保持一致。我们探讨了安全软件开发生命周期管理、工具和过程等领域，并围绕改进所获得产品的整体安全状况提供了建议。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 International Conference on Disruptive Technologies for Multi-Disciplinary Research and Applications (CENTCON)

自引率

0.00%

发文量