{"title":"通过安全性和风险管理加强DevOps方法:在墨西哥组织的数据中心实现它的经验","authors":"O. Díaz, M. Muñoz","doi":"10.1109/CIMPS.2017.8169957","DOIUrl":null,"url":null,"abstract":"Nowadays the importance of the term DevOps (Developer Operations) has increased around the world, and Mexico is not the exception. This paper describes the implementation of information security and risk management best practices in a DevOps approach established in a Data Center of a large government organization of Mexico. The DevOps approach with security and risk management practices was named as DevSecOps + Risk Management and it aims to produce a strategy among automatize operation within the organization or enterprise using information technologies, software engineering and quality controls, so that, it allows managing work flows, version control, software product release, risk management and security reinforcement, considering people and technology.","PeriodicalId":265026,"journal":{"name":"2017 6th International Conference on Software Process Improvement (CIMPS)","volume":"98 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Reinforcing DevOps approach with security and risk management: An experience of implementing it in a data center of a mexican organization\",\"authors\":\"O. Díaz, M. Muñoz\",\"doi\":\"10.1109/CIMPS.2017.8169957\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Nowadays the importance of the term DevOps (Developer Operations) has increased around the world, and Mexico is not the exception. This paper describes the implementation of information security and risk management best practices in a DevOps approach established in a Data Center of a large government organization of Mexico. The DevOps approach with security and risk management practices was named as DevSecOps + Risk Management and it aims to produce a strategy among automatize operation within the organization or enterprise using information technologies, software engineering and quality controls, so that, it allows managing work flows, version control, software product release, risk management and security reinforcement, considering people and technology.\",\"PeriodicalId\":265026,\"journal\":{\"name\":\"2017 6th International Conference on Software Process Improvement (CIMPS)\",\"volume\":\"98 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 6th International Conference on Software Process Improvement (CIMPS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CIMPS.2017.8169957\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 6th International Conference on Software Process Improvement (CIMPS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CIMPS.2017.8169957","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Reinforcing DevOps approach with security and risk management: An experience of implementing it in a data center of a mexican organization
Nowadays the importance of the term DevOps (Developer Operations) has increased around the world, and Mexico is not the exception. This paper describes the implementation of information security and risk management best practices in a DevOps approach established in a Data Center of a large government organization of Mexico. The DevOps approach with security and risk management practices was named as DevSecOps + Risk Management and it aims to produce a strategy among automatize operation within the organization or enterprise using information technologies, software engineering and quality controls, so that, it allows managing work flows, version control, software product release, risk management and security reinforcement, considering people and technology.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
