Authority. That's Xebia's mission. In other words: aiming to be a thought leader in all domains of digital transformation and a frontrunner in specific fields. That is deeply embedded in our consultants' DNA, according to Andrew de la Haije and Ellis de Haan.
"Never let a good crisis go to waste." A well known saying, but how does it apply to businesses today? Contrary to what you might expect, the pandemic has accelerated business transformation.
Topics: DevOps & Continuous Delivery, Software Development, Cloud Infrastructures, Agile Transformations, Digital Strategy, Big Data & Data Science, Security, Quality Software Delivery, Product Management, Cloud Transformation
Press Release | April 7 2020
Xebia named one of the best companies in e-business of 2020. The comprehensive portfolio of digital services is rewarded with five stars, and the 5th place in the list of fullservice digital agencies(large).
Topics: DevOps & Continuous Delivery, Software Development, Cloud Infrastructures, User Experience, Agile Transformations, Digital Strategy, Big Data & Data Science, Security, Quality Software Delivery, Blockchain, Product Management
Should we get rid of IT architects, or do we need them more than ever?-There are a lot of connotations when it comes to traditional IT architecture:
In Agile transformations, it's common to start small with a couple of pilot development teams to gain some experience before implementing larger organizational changes. While sensible on the surface, it’s a recipe for disaster because it threatens the entire transformation, as well as the organization’s security.
Authors: Han Goossens – Commercial Manager Xebia Security & Tom Rijgersberg, Business Unit Manager Xebia Security
Winning businesses innovate and that innovation will more and more be driven by fast ‘deployment’ of products and services with small increments. Will the drive to reduce time to market for releasing new applications go hand in hand with the growing desire for security? Nowadays a lot of companies experience Security as the biggest impediment in delivering innovation. For the sake of becoming a successful and reliable innovator the next level in the maturity model has been announced: continuous security. What is the relation between Innovation and Security, and more specifically, Application Security? How can organizations successfully apply Continuous Security?
Some time ago I attended BruCON. For those unfamiliar with it, BruCON is a security conference where everybody with an interest in security can share their views and findings. As always, it was a great mixture of technology, philosophy, personal opinions and hands-on workshops.
This time, however, I noticed a certain pattern in some of the talks. Chris Nickerson gave a presentation about "how to make a pentester's life hell" based on experience, Shyma Rose shared her views on risk management, Mark Hillick showed us how the security was improved at Riot Games and David Kennedy provided his opinion on the state of the information security industry nowadays. All four of them basically told pieces of the same tale from a different perspective and I will try to provide my viewpoint on the matter in this blog.
Whenever I give a presentation, training, or just talk to security teams, it becomes clear that over the years a gap has been created between application security and development. A gap we created consciously and with intent and that became painfully visible with the introduction of Agile and DevOps. Suddenly exhaustive information security policies with checklists and penetration tests became serious impediments. The challenge we are facing now is how to bridge this gap again.