Let’s face it: The tension between developers and security and compliance administrators is thick. Developers want to code at their highest velocity; and policies, processes, and protocols that limit or hinder their productivity is not only frustrating to developers but impacts business value because innovation cannot be delivered at the speed the business requires.
At the same time, Security and Compliance administrators want a secure, tamper-free environment because one publicized breach results in loss of reputation, revenue, and sometimes their job (not to mention sensitive data). As a result, the limits they place upon developers (and others) is NOT because they enjoy inflicting pain upon their colleagues (although I know a couple who, if you look closely, do have a wry smirk after releasing the “latest governance protocols” ).
But what if we could have both? Developers who can code at the speed that innovation requires, all within the guardrails that show evidence of a compliant, secure environment?
That’s what this session is all about. Raunak Shrestha and I will talk (and demo) through the needs of these two groups that naturally cause this tension.
We will show the following:
- IBM Cloud for Financial Services controls framework
- Automation to provision compliant environments
- Security & Compliance Center monitoring for technical compliance
- IBM Toolchains where developers thrive within the guardrails of compliance
- Monitoring with Instana to find root cause of problems.
You will see first-hand how both developers and Security and compliance administrators can not only achieve their goals, but quite possibly support and advocate for each other!
Can’t wait to see you there!
Session ID: 5080
Thursday 12-1, Room 106
PS: Make sure you register: TechXchange Conference from Sept 11-Sept 14th in Las Vegas