12 02, 2020

Using Python to Retrieve GCP Stackdriver Monitoring Data

By |2020-02-12T09:58:58-08:00February 12th, 2020|Categories: Articles, Tips & Tricks|Tags: , , , , |

Recently I inherited a complex Google Cloud (GCP) App Engine configuration. App Engine is the managed web server platform, which does not require you to provision/configure/manage your own servers. Some call that serverless.   As I said, it was very complex with some components (services) probably not being used at [...]

28 11, 2018

3 Key InfoSec things to do before the end of the year

By |2019-10-31T10:58:20-07:00November 28th, 2018|Categories: Secure Software Development, Tips & Tricks|Tags: , , , , , |

Thanksgiving in the US is passed and year end is in sight. As the end of the calendar year draws near, let's consider a few short term objectives you can complete right now that will have a long lasting effect on your security programs in 2019. 1. [...]

10 10, 2018

At GridSecCon 2018 – The Future of IT and OT Converged Orchestration

By |2019-10-22T13:56:15-07:00October 10th, 2018|Categories: Events, Tips & Tricks|Tags: , , , , |

On Thursday, October 18, 2018 at GridSecCon 2018 on behalf of New Context, I will be talking about what it means to run security orchestration in your converged IT and OT environments. Both IT and OT are struggling to keep up with the ever changing and advancing threat landscape yet [...]

16 04, 2018

Let’s set your DevOps up for success: Andrew Storms featured in the latest publication from DevOps.com

By |2018-04-16T18:43:34-07:00April 16th, 2018|Categories: Articles, Tips & Tricks|Tags: , , , |

Before you start coding or your assessments and security tests, decide what metrics are important that you will use to gauge the effectiveness of your security organization. The newest ebook from DevOps.com has arrived, just in time for RSA 2018 and DevOpsConnect. Our VP of Product Andrew Storms is [...]

16 10, 2017

Tips For Using Chef Zero, Audit Mode, and Packer

By |2019-09-11T12:35:48-07:00October 16th, 2017|Categories: Tips & Tricks|Tags: , , , , , , |

Image via Pixabay Recently, Joshua Kugler, a Sr. DevOps Engineer at New Context, wrote a blog post providing tips for using Chef Zero, audit mode and Packer. As leaders in DevSecOps, we believe in the importance of sharing knowledge and are passing this resource along to you. Read [...]

29 09, 2017

STIX Patterning quick reference card

By |2019-10-22T14:07:12-07:00September 29th, 2017|Categories: Tips & Tricks|Tags: , , , , |

Indicators are probably the most frequently used object in the STIX 2 data model. At the heart of STIX Indicators is the STIX Patterning Language. STIX Patterning is a powerful tool capable of describing a wide spectrum of malicious attacker behavior in a machine-parsable format suitable for security automation. STIX [...]

1 03, 2017

Automate Web App Security Scanning Using Arachni

By |2019-11-18T09:11:19-08:00March 1st, 2017|Categories: Articles, Tips & Tricks|Tags: , , , |

In this post I'm going to share with you how our teams implement automated vulnerability scanning for our web apps using Arachni and integrating that in to our Continuous Delivery pipeline. In this example we're going to show how we can do this using a Jenkins server, but theoretically anything [...]

10 02, 2017

How to Build DevOps Momentum

By |2019-10-22T14:07:33-07:00February 10th, 2017|Categories: Articles, Tips & Tricks|Tags: , , , , , , |

For all of its challenges, 2016 was a year of inspiring innovation. SpaceX proved we can have reusable rockets by taking a page from a science fiction book and launching a rocket then landing it vertically on a moving boat. Enter a new era of space travel. Tesla sent all [...]

10 11, 2016

Three ways to get a handle on data governance in hybrid cloud environments

By |2016-11-10T22:16:05-08:00November 10th, 2016|Categories: Tips & Tricks, Webinar|Tags: , , , , |

Experts from New Context and WANdisco joined together to explain the tools and techniques for securely managing big data in hybrid cloud environments. This webinar was held on November 3, 2016 and Attendees learned what's required for effective data governance with the highest levels of availability and performance on-premises and in the [...]

Load More Posts
Go to Top