DevSecOps

Runtime Visibility & AI-powered Security in Cloud-Native Environments
Kubernetes and cloud-native platforms have transformed software delivery — but also redefined the attack surface. As threats shift to runtime, visibility and real-time response have become the new security frontline. AI-driven anomaly ...
Alan Shimel | | AI copilot, AI governance, AI in cybersecurity, anomaly detection, automated response, CI/CD security, cloud native security, cloud security, cloud-native defense, container security, DevSecOps, explainable AI, kubernetes, LLMs in security, observability, platform engineering, runtime protection, runtime security, runtime visibility, security automation, security telemetry, service mesh, threat detection, zero-trust

DevOps in the Cloud-Native Era: The Blueprint for Blazing-Fast Software Delivery
Cloud-native and DevOps are now non-negotiable for scaling software delivery. Learn how CI/CD, IaC, GitOps, observability, and AI shape modern DevOps success ...

Runtime Visibility: The Missing Layer in Cloud-Native Security
Cloud-native security can’t rely on old perimeter defenses. With workloads spinning up in seconds, runtime visibility is now the missing layer leaders must prioritize. Learn why observability is security, how tools like ...

OpenTofu Project Adds OCI Registry to Share and Reuse Components
The OpenTofu project has released an update that adds support for a registry based on the Open Container Initiative specifications to make it simpler to share and reuse modules ...

Why DockSec is the Security Layer Your Dockerfiles Were Missing
This article walks you through how DockSec works, what makes it different and why it matters for modern DevSecOps workflows. ...

DevSecOps for Kubernetes: 15 Best Practices for 2025
Some recommended best practices for securing applications in your Kubernetes environment, significantly enhancing their overall security. ...

Shauli Rozen on Kubescape Achieving CNCF Incubation
ARMO CEO Shauli Rozen explains why Kubescape, an open source agent for collecting security telemetry data in Kubernetes environments, has become an incubation level project within the Cloud Native Computing Foundation (CNCF) ...

Cloudsmith Updates Container Registry to Streamline DevSecOps Workflows
Cloudsmith at the Kubecon + CloudNativeCon Europe 2025 conference today added real-time vulnerability scanning along with an ability to automate the signing for container images, as they are cached using the open-source ...

The Future of Workload Isolation with Emily Long
Edera CEO Emily Long, in the wake of the company picking up an additional $15 million in funding, explains why a new approach to isolating workloads is needed to better secure IT ...

Best of 2024: Revolutionizing Software Development With Cloud-Native DevSecOps
DevSecOps and cloud-native architectures provide robust tools for monitoring and managing cloud platform resources ...