search menu icon-carat-right cmu-wordmark

Posts by Kiriakos Kontostathis

Improving Data Analysis with DevOps

Improving Data Analysis with DevOps

• Blog
Kiriakos Kontostathis

Data analysis is complex and, at times, overwhelming. Automation increases an analysis team's ability to continuously improve their process. Specifically, the automation of software is the best way to manage all of the iteration and repetition that proper data analysis requires. DevOps is the perfect fit when planning a project that requires software, automation, and collaboration. In particular, DevOps improves all aspects of the data analysis process and allows teams to automate all software-based aspects...

Read More
Collecting Data, The DevOps Way

Collecting Data, The DevOps Way

• Blog
Kiriakos Kontostathis

Data collection and storage are a large component of almost all software projects. Even though most software projects include a data component, this topic is rarely discussed in the DevOps community. The adoption rate of database continuous delivery (CD) is about half the rate of application CD. There are several reasons for this, but the primary one is that databases rarely change as often as applications do. There may be a few model changes, but...

Read More
Spreading Security with Overcommit

Spreading Security with Overcommit

• Blog
Kiriakos Kontostathis

We often discuss how important it is to incorporate security into all parts of the DevOps software development lifecycle (SDLC). For example, my post Security...Security Everywhere discusses what types of security can be incorporated into the different phases of the SDLC. However, incorporating security is often hard, due to part to the fact that most automated security testing tools are only available in a couple of places in the SDLC, primarily the continuous integration (CI)...

Read More
Security...Security Everywhere

Security...Security Everywhere

• Blog
Kiriakos Kontostathis

In this DevOps revolution, we are trying to make everything continuous: continuous integration, continuous deployment, continuous monitoring--the list goes on. One term you rarely hear, however, is continuous security, because it is often seen as an afterthought when building and implementing a delivery pipeline. The pipeline I will be discussing has six components: plan, code, build, test, release, and operate. There is also a seventh, less-formal component, which is the iterative nature of the delivery...

Read More
Adding Security to Your DevOps Pipeline

Adding Security to Your DevOps Pipeline

• Blog
Kiriakos Kontostathis

DevOps practitioners often omit security testing when building their DevOps pipelines because security is often linked with slow-moving business units and outdated policies. These characteristics conflict with the overall goal of DevOps, which is to improve the software delivery process. However, security plays an important role in the software development lifecycle and must be addressed in all applications. Incorporating security into different stages of the DevOps pipeline will not only start to automate security, but...

Read More

Contact the Author

Kiriakos Kontostathis

SEI Digital Library

SEI Publications

Visit the SEI Digital Library to see other publications by Kiriakos Kontostathis

View publications