DevSec Collaboration: Enable Developers to Collaborate with Security Teams through Codified Policies hero graphic

DevSec Collaboration: Enable Developers to Collaborate with Security Teams through Codified Policies

Jun 12, 2020 by DROdio

What if your security teams could collaborate directly with your developers by creating policies that ensure safety and compliance, while also giving your developers the ability to manage and update their software delivery workflows and processes? This empowers developers to see, understand and fix policy violations in realtime as they deliver software to production, increasing their velocity while ensuring the company’s safety.

  • Armory’s Policy Engine builds on the popular Open Policy Agent open source project
  • Write simple rules in code to enforce company policies for security and compliance
  • Automate the enforcement of these codified policies with Spinnaker
  • Execution features allow policies to be run before and after pipeline stages, and Persistence features allow policies to be evaluated when a pipeline is saved

Armory engineer Jacob Kobernik explains how Armory Policy Engine makes it possible:

This Armory Policy Engine Plugin works with both open-source Spinnaker as well as Armory’s enterprise distribution of Spinnaker, thanks to our use of the new Spinnaker Plugin Framework.

Recently Published Posts

3 Common Spinnaker Challenges (and Easy Ways to Solve Them)

Sep 27, 2022

Spinnaker is the most powerful continuous delivery tool on the market.  DevOps engineers and developers recognize this power and are looking to use Spinnaker as a foundational tool in their Continuous Integration and Continuous Delivery (CI/CD) process for hybrid and multi-cloud deployments. Such a powerful, expansive open source tool needs expertise within your organization to […]

Read more

Streamline Advanced Kubernetes Deployments from GitHub Actions with New Armory Service

Sep 23, 2022

Today, Armory is excited to announce the availability of the GitHub Action for Armory Continuous Deployment-as-a-Service. GitHub is where developers shape the future of software. After a developer writes and tests their code in GitHub, it must be deployed. Armory’s GitHub Action for Continuous Deployment-as-a-Service extends the best-in-class deployment capabilities to Kubernetes. CD-as-a-Service enables declarative […]

Read more

When everyone is facing the same headwind, go on the offensive

Sep 12, 2022

Call me Pollyanna, but what a great time to be a Platform or DevOps engineer. If you’re working in a public company, the S&P is off ~20% year over year, so the value of your RSUs has wilted. If you’re working in a private company, venture funding and M&A velocity are anemic, making expansion capital […]

Read more