In the past, the role of security was for a specific team in the final stage of development. Now, in the collaborative framework of DevOps, security is a shared responsibility integrated from end to end. In our recent interviews, we featured Larry Maccherone who is DevSecOps Transformation at Contrast Security. He answered some of our basic questions – What is the difference between DevOps and DevSecOps?
Larry said it’s a mindset that is so important, which led to coining the term “DevSecOps’ ‘. It emphasizes the need to build a security foundation into DevOps initiatives. He shared his experience when the DevOps movement started and what inspired him to share DevSecOps Manifesto. He said the cultural transformation mentality made him think of DevSecOps Manifesto. We also spoke about identification of security flaws, he integrated security flaws with the feedback mechanism. We discussed many of his other incidents that he experienced. Larry also spoke in detail about DevSecOps Transformation, challenges he faced and many more tales.
Interviewee: Larry Maccherone(DevSecOps Transformation at Contrast Security)
Larry served as Principal for his namesake consulting firm where he worked with clients like IBM, Adobe, Oracle, USAA, and Intuit. Before branching out on his own, he became an internationally-recognized author and speaker on Agile Cultural Transformations and Published the largest ever study quantifying the impact of Agile Development Practices while serving as the Director of Analytics and Research for Rally Software.
Larry firmly believes in learning by doing so in his spare time, he is the author of several open source projects which get hundreds of downloads a month and one, node-local storage, which gets over 300,000 downloads a month.
Interviewer: Noopur Pathak (Chief Media Editor, INNOVATION ROOTS)