Many feel that the firewall is the most major development in the past thirty years or so of cybersecurity history. Since its implementation back in 1988, it has definitely evolved from noncomplex simple packet filters to stateful filters, and then, from the 3rd-generation application layer firewall to the most recent next-generation firewall or NGFW. And, although the NGFW is a definite component of the cybersecurity stack, it isn’t revolutionizing our methods of keeping our critical company assets protected, anymore.
At present, cybersecurity tactics have been “disrupted” by these two modern models: DevSecOps and the Zero Trust model.
Zero Trust Model
This model, also called the Zero trust architecture model, was originally developed by John Kindervag back in 2010. The concept itself puts a totally new spin on the way cybersecurity is approached. Older models utilized the perimeter and white-listing concept; but, with the shift to the cloud, IoT and mobile devices, the perimeter concept has officially died.
Google was actually the among the first companies to shift a significant amount of its cybersecurity when BeyondCorp was created, and in 2013, BeyondCorp’s release was rapidly proceeded by a new-fangled standard called Software Defined Perimeter or SDP, created by Cloud Security Alliance.
It gives employees the ability to securely work from virtually any location, without requiring a traditional, costly VPN.
Gartner asserts, “By 2016, DevOps will evolve from a niche to a mainstream strategy employed by 25% of Global 2000 organizations.”
Employing DevOps helps businesses get more work done. It eliminates silos and encourages collaboration, therefore promoting teamwork, teams adopting the DevOps model can develop new features more quickly and increase their lead time, while also boosting innovation and improving communication and engagement among employees. In turn, these companies are able to make their applications more stable and more secure.
Implementing DevOps allows organizations to get more done. DevOps promotes teamwork by eliminating silos and encouraging collaboration. Teams that adopt the DevOps model are able to increase lead time, create new features at a faster pace, all while driving innovation and increasing employee engagement and communication. In turn, they are making applications more secure and stable.
The next generation of DevOps integrates both security and compliance into the model’s life cycle, giving birth to DevSecOps. However, deploying this technology stack is challenging because it needs at least 8 solution components, and DevOps engineers are becoming increasingly harder to find.
What are your thoughts on this? Let us know in the comments area?