risk management | TechWell

risk management

SecOps team member touching a security icon on a screen 5 SecOps Challenges and How to Overcome Them

SecOps, or security operations, is a collaboration between information security and IT operations to keep a company’s data secure and reduce risk, all while maintaining agile timelines. But it can be difficult to start. Here are five challenges you should address to ensure your SecOps implementation is successful.

Gilad David Maayan's picture
Gilad David Maayan
Icon of a person throwing garbage into a trash can Trusting Your Data: Garbage In, Garbage Out

Poor quality input will always produce faulty output. Improper validation of data input can affect more than just security; it can also affect your ability to make effective business decisions. Bad data can have impacts on how you make quantitative decisions or create reports, if you can’t trust the data you receive.

Alan Crouch's picture
Alan Crouch
Shachar Schiff Security Testing and Assessing Risk: A Slack Takeover with Shachar Schiff

Thought leaders from the software community are taking over the TechWell Hub to answer questions and engage in conversations. Shachar Schiff, founder and principal consultant at BadTesting, hosted this Slack takeover and discussed assessing code coverage like a risk analyst, risk assessments outside security, and more.

Kelly McGee's picture
Kelly McGee
Highway with free-flowing traffic Lower Risk of Downtime by Testing with Production Traffic

Teams need a means of identifying potential bugs and security concerns prior to release—with speed and precision, and without the need to roll back or stage. By simultaneously running live user traffic against the current software version and the proposed upgrade, you can detect bugs while reducing risk and downtime.

Robert Ross's picture
Robert Ross
Chess king standing after all other chess pieces have been captured Take Credit for Your Risk Management Activities

If you have an important implementation date, early identification of the minimum viable product is a vital risk-management step that helps focus your team’s attention on what's important. Rather than apologizing for intelligent phasing of functionality to manage risk, explain it to stakeholders and take credit.

Payson Hall's picture
Payson Hall
An airplane in flight, photo by Andrew Palmer What Aircrews Can Teach DevOps Teams

Aircrews learn a set of skills involving a structured way of communicating that breaks down barriers and forces an honest evaluation of the issues. They also automate what they can but still practice their craft over and over again, including what to do during failures. DevOps teams can learn a lot from aircrews.

Peter Varhol's picture
Peter Varhol Gerie Owen
Computer dashboard showing metrics, photo by Carlos Muza The Testing Practices and Metrics That Really Matter in Agile and DevOps

Scaled agile and DevOps change the game for software testing. It’s not just a matter of accelerating testing; it’s also about fundamentally altering the way we measure quality. The test outcomes required to drive a fully automated release pipeline are dramatically different from the ones most teams measure today.

Wayne Ariola's picture
Wayne Ariola
A cockpit's dashboards as a pilot flies a plane, photo by Kristopher Allison Testing at 43,000 Feet: Reporting Risk That Matters

Many teams' daily testing gets broken down into numbers. If you're used to dashboards, it can be easy to forget the prime objective: to raise up quality issues—or, in the case of safety-critical devices, potential hazards. Graphs are comfortable, but do they really provide the information we should be looking for?

Alexandre Bauduin's picture
Alexandre Bauduin