One of the first considerations that IT managers struggle with is how to handle security and compliance. Both security and compliance are aspects of a larger, more strategic concern: governance. Governance essentially represents a set of processes for creating, communicating, and enforcing policies across an organization — including security and compliance policies.
In many IT shops, however, governance has a negative connotation, as it brings to mind paperwork-laden processes involving endless meetings and busywork, slowing down the more important work of the organization. And yet, without governance, how would companies ensure they have adequate security and sufficient compliance controls?
Cloud computing, in fact, raises the stakes on governance. The Cloud’s automated self-service represents powerful tools in the hands of people across the organization. Without a proactive, automated approach to governance, companies risk running off the rails. We call this proactive, automated approach next-generation governance.
Read the entire article at https://medium.com/compliance-at-velocity/can-security-and-devops-get-along-e2e5be881baa.
Copyright © Intellyx LLC. Image credit: GotCredit.
