An Intellyx Brain Candy Brief
DevSecOps recognizes that cybersecurity activities should not be separate from application development. Instead of putting security people in a silo, a collaborative effort should shift security to the left, ensuring that everyone on the team is responsible for security throughout the software lifecycle.
Easier said than done. Most organizations struggle with the organizational and political challenges of DevSecOps, as well as the fact that security and DevOps personnel have different skillsets and expertise using different tools.
Refactr seeks to address these DevSecOps challenges with a deceptively simple automation platform.
The Refactr platform leverages a low-code interface to help anyone on the DevSecOps team regardless of role create simple, composable workflows for dealing with a range of security activities, including application security code scans, user audits, compliance assessments, container/microservices scanning, network automation, and more.
The resulting workflows are modular, and the team can assemble them into higher-level pipelines as needed to support the entire DevSecOps software lifecycle via an ‘IT as code’ immutable infrastructure approach.
Refactr integrates with a number of open source and commercial security and DevOps tools. In addition to building custom pipelines, Refactr also hosts a solution catalog where people can download pre-built pipelines from Refactr, its partners and customers, and members of the open source community.
Copyright © Intellyx LLC. Intellyx publishes the Cloud-Native Computing poster, advises companies on their digital transformation initiatives, and helps vendors communicate their agility stories. As of the time of writing, none of the organizations mentioned in this article are Intellyx customers. To be considered for a Brain Candy article, email us at pr@intellyx.com.
