Developer Experience and Developer Platforms - part 2
Exploring the evolution of Developer Experience and Platform Engineering, this post emphasizes the significance of treating Developer Platforms as products to enhance DevEx. It advocates for a product-centric approach to Developer Platforms and introduces Platform Engineering as a strategic discipline for creating self-service platforms to meet diverse user needs efficiently, ultimately accelerating business value realization.
Developer Experience and Developer Platforms - Part 1
Exploring Developer Experience (DevEx) and its impact on Business Value, this post highlights how enhancing DevEx through reducing toil and improving tooling leads to faster software delivery, better quality, and ultimately, heightened business value.
FinOps vs. Security
In the dynamic landscape of information technology, organizations are increasingly adopting cloud computing for its transformative impact. As sensitive data migrates to the cloud, robust policies, accountability, and security measures are crucial. Comprehensive policies covering data handling, access management, and encryption, along with employee training, are vital for effective cloud governance and defense against security threats.
FinOps
The persistent concern about managing cloud spend has led to the emergence of FinOps, a discipline that combines Finance and DevOps principles. You can begin your journey using a gradual process of Inform (understanding actual costs through tagging and policies), Optimize (collaboration and calculating ROI), and Operate (utilizing tagging and policies for various advantages, including added security)
Securing Your Software Supply Chain
In the 3rd installment of our SSSC blog series, we continue to explore key tactics for securing software supply chains. We dive deeper into how to protect yourself and your customers from 3rd party software risks. We examine consuming and creating Software Bills of Material and the topic of provenance.
Secure Software Supply Chains - Regulations, Frameworks, and Standards
In the wake of the SolarWinds incident, US government regulations have led to the creation of a variety of new regulations, standards, and frameworks. This post provides an overview of those regulations and standards and their impact on software delivery.
Navigating Secure Software Supply Chains
Ransomware attacks have become a frequent concern, impacting workplaces and software systems, exposing organizations to heightened risks. Secure Software Supply Chain (SSSC) practices endorsed by organizations such as the CISA and the CNCF help your organization mitigate those risks. Idea Harbor offers tailored SSSC implementation guidance, accommodating diverse technical processes to enhance organizational security.