introduction to DevSecOps for managers

In recent years, DevOps, which aligns incentives and the flow of work across the organization, has become the standard way of building software. By focusing on improving the flow of value, the software development lifecycle has become much more efficient and effective, leading to positive outcomes for everyone involved. However software development and IT operations aren’t the only teams involved in the software delivery process. With increasing cybersecurity threats, it has never been more important to unify cybersecurity and other stakeholders into an effective and united value stream aligned towards continuous delivery.

At the most basic level, there is nothing separating DevSecOps from the DevOps model. However, security, and a culture designed to put security at the forefront has often been an afterthought for many organizations. But in a modern world, as costs and concerns mount from increased security attacks, it must become more prominent. It is possible to provide continuous delivery, in a secure fashion. In fact, CD enhances the security profile. Getting there takes a dedication to people, culture, process, and lastly technology, breaking down silos and unifying multi-disciplinary skill sets. Organizations can optimize and align their value streams towards continuous improvement across the entire organization. 

To help educate and inform program managers and software leaders on secure and continuous software delivery, the Linux Foundation is releasing a new, free online training course, Introduction to DevSecOps for Managers (LFS180x) on the edX platform. Pre-enrollment is now open, though the course material will not be available to learners until July 20. The course focuses on providing managers and leaders with an introduction to the foundational knowledge required to lead digital organizations through their DevSecOps journey and transformation.

LFS180x starts off by discussing what DevSecOps is and why it is important. It then provides an overview of DevSecOps technologies and principles using a simple-to-follow “Tech like I’m 10” approach. Next, the course covers topics such as value stream management, platform as product, and engineering organization improvement, all driving towards defining Continuous Delivery and explaining why it is so foundational for any organization. The course also focuses on culture, metrics, cybersecurity, and agile contracting. Upon completion, participants will understand the fundamentals required in order to successfully transform any software development organization into a digital leader.

The course was developed by Dr. Rob Slaughter and Bryan Finster. Rob is an Air Force veteran and the CEO of Defense Unicorns, a company focused on secure air gap software delivery, he is the  former co-founder and Director of the Department of Defense’s DevSecOps platform team, Platform One, co-founder of the United States Space Force Space CAMP software factory, and current member of the Navy software factory Project Blue. Bryan is a software engineer and value stream architect with over 25 years experience as a software engineer  and leading development teams delivering highly available systems for large enterprises. He founded and led the Walmart DevOps Dojo which focused on a hands-on, immersive learning approach to helping teams solve the problem of “why can’t we safely deliver today’s changes to production today?” He is the co-author of “Modern Cybersecurity: Tales from the Near-Distant Future”, the author of the “5 Minute DevOps” blog, and one of the maintainers of MinimumCD.org. He is currently a value stream architect at Defense Unicorns at Platform One. 

Enroll today to start your journey to mastering DevSecOps practices on July 20!

Zowe LTS V2 increases product stability, security and interoperability and ensures longevity compatibility with the Conformance and Conformant Support Provider Programs

SAN FRANCISCO, May 26, 2022 – The Open Mainframe Project announced today that Zowe, an open source software framework for the mainframe that strengthens integration with modern enterprise applications, marks a major technical milestone with the Long Term Support (LTS) V2 release. The second version, which comes 2 years after the first LTS release, will offer vendors and customers product stability, security, interoperability as well as easy installation and upgraded features.

“As organizations expand their hybrid cloud workloads, the Zowe framework evolves to address critical architectural requirements,” said Rose Sakach, Chair of the Zowe Technical Advisory Committee and Product Manager at Broadcom. “Since its launch in 2018, Zowe has become a foundational enabler to businesses’ hybrid IT strategy. The LTS V2 Release will continue to strengthen this value with developer-friendly features and benefits.”

Benefits of the LTS V2 include:

  • Stability: Organizations can confidently adopt the technology for enterprise use and upgrade when appropriate for their environment, minimizing the risk of disruption.
  • Interoperability: Zowe consumers can be assured LTS-conformant extensions have adapted to and support LTS features.
  • Longevity: Zowe is designed for years of use and plans are in place for continued updates and support.

Open Mainframe Project launched Zowe, the first-ever open source project based on z/OS, in 2018 to serve as an integration platform for the next generation of administration, management and development tools on z/OS mainframes.  The Zowe framework uses the latest web technologies among products and solutions from multiple vendors. Zowe enables developers to use familiar, industry-standard, open source tools to access mainframe resources and services.

Feedback and interest in Zowe have been noteworthy. Since January 2022, Zowe has more than:

  • 130,000 downloads
  • 87,000 page views and 16,000 visitors of zowe.org
  • 520 contributors

Key features of Zowe LTS V2 include:

  • More security features built in to ensure data and user credentials are always encrypted and safe.
  • A new daemon mode delivering performance improvements for the command line interface.
  • The time to value to configure Zowe is faster and easier.
  • There is more engagement and collaboration between team members using Zowe for modern DevOps at scale.
  • New APIs created by the community

For more features, click here.

“Zowe continues to innovate as a direct result of the contributions, leadership and passion of the global open source community,” said John Mertic, Director of Program Management for the Linux Foundation and Open Mainframe Project. “Zowe shows no sign of slowing momentum and the LTS V2 release demonstrates our commitment to interoperability, stability and security.”

Other Zowe Updates

  • Zowe Chat, a new incubator project that extends z/OS use by focusing on working with mainframes from chat clients such as Slack, Microsoft Teams and Mattermost (with extensibility for other solutions). A set of commonly used scenarios will be provided, and the framework will be extensible so sites can add new scenarios. Similar to other Zowe core packages, the chat framework will be extensible by vendor tools, bringing an integrated user experience for more elaborate cross-vendor scenarios. Read more about it here.
  • Zowe IntelliJ Plugin , a new incubator project that provides access to the mainframe from IDEs like IntelliJ, PyCharm, WebStorm and more. Launched by IBA Group, the IntelliJ IDEA plug-in leverages z/OSMF to interact with mainframe data sets and USS files, which enables those familiar with these IDEs to comfortably work with the mainframe just like other projects. This integration will improve the efficiency and overall happiness of IntelliJ enthusiasts now working on the mainframe. Learn more in this blog.
  • Zowe was recognized as the Best DevOps for Mainframe Award in this year’s DevOps Dozen competition. It was selected over a number of commercial vendor offerings, reflecting a widespread appreciation for the value of an open source solution for the mainframe. Learn more.

The Zowe Conformance Program is Updated with LTS V2 Guidelines

Aimed to build a vendor-neutral ecosystem around Zowe, Open Mainframe Project’s Zowe Conformance Program launched in 2020.  The program has helped Open Mainframe Project members such as ASG Technologies, BMC, Broadcom, IBM, Micro Focus, Phoenix Software International, and Rocket Software incorporate Zowe with new and existing products that enable integration of mainframe applications and data across the enterprise.

To date, 75 products have implemented extensions based on the Zowe framework and earned these members conformance badges

Additional Resources:

About the Open Mainframe Project

The Open Mainframe Project is intended to serve as a focal point for deployment and use of Linux and Open Source in a mainframe computing environment. With a vision of Open Source on the Mainframe as the standard for enterprise class systems and applications, the project’s mission is to Build community and adoption of Open Source on the mainframe by eliminating barriers to Open Source adoption on the mainframe, demonstrating value of the mainframe on technical and business levels, and strengthening collaboration points and resources for the community to thrive. Learn more about the project at https://www.openmainframeproject.org.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

###

SAN FRANCISCO, April 21, 2022 The Open Mainframe Project, an open source initiative that enables collaboration across the mainframe community to develop shared tool sets and resources, today announced the launch of the Call for Proposals (CFPs) for the 3rd annual Open Mainframe Summit. The premier mainframe event of 2022, the Summit will take place in person on September 21-22 at Convene at Commerce Square in Philadelphia, PA.

“We are excited to host Open Mainframe Summit in person this year,” said John Mertic, Director of Program Management at the Linux Foundation. “The last two events were successful in that we enabled our messages to reach more users around the world. We hope to continue that momentum while also giving our community a safe place to engage and collaborate face-to-face.”

Open Mainframe Summit is open to students, developers, users and contributors of projects from around the globe looking to learn, network and collaborate. It will feature content tracks that tackle both business and technical strategies for enterprise development and deployment.

Submit a Proposal

The Call for Proposals is now open and will be accepting submissions until Friday, June 10, 2022. Interested speakers can submit proposals in 10 tracks with options for lightning talks, 30-minute sessions and panel discussions. Tracks include:

  • AI & Machine Learning
    • From open source projects with a focus on AI, Machine Learning, and Data Analytics that currently run on Z to the AI accelerator on the recently announced IBM Telum processor, the mainframe will continue to be a key component of how organizations process their data. This track will look at projects, tools, and strategies currently used by organizations tackling these topics today.
  • Building the Next Workforce
    • Building the next workforce in today’s evolving mainframe and post-COVID environment can be challenging. This track will provide strategies for helping onboard newcomers to the platform to learn from the veterans as well as detailed opportunities for the veterans to learn tooling from the newcomers that can now be leveraged for mainframe!
  • Business
  • Cloud Native on the Mainframe + Hybrid Cloud
    • Explore the solutions for and benefits of integrating  mainframe into your hybrid cloud environment. Topics range from incorporating mainframe into enterprise DevOps pipelines and enabling the use of popular distributed tooling such as VS Code to running containers directly on z/OS.
  • Diversity + Inclusion
  • Education + Training
    • Discover opportunities to add more tools to your tech toolkit! Whether you are just getting started with mainframe or you are an experienced veteran, there are programs to expand your skill set & to also share your knowledge with others.
  • Languages
    • The mainframe supports a variety of programming languages, both on z/OS and Linux. This track will showcase some of the latest technical updates, usage statistics, and more from several of them.
  • Linux on Z
  • Open Source Security on Mainframe
    • From security scans performed in the course of software development to security scans and audits that can be done within an organization to make sure all software is in compliance, this track will focus on what software vendors and open source software projects are doing to ensure that software being provided on the mainframe is secure.
  • z/OS

Submit a proposal: https://events.linuxfoundation.org/open-mainframe-summit/program/cfp/.

Meet the Program Committee

A program committee, which includes maintainers, active community members and project leaders, will review and rate the proposals once all the submissions are in. This year, Open Mainframe Project welcomes Alan Clark, CTO Office and Director for Industry Initiatives, Emerging Standards and Open Source at SUSE, Donna Hudi, Chief Marketing Officer at Phoenix Software, Elizabeth K. Joseph, Developer Advocate at IBM and Michael Bauer, Staff Product Owner at Broadcom, Inc.

Whether a company is a member or contributor of Open Mainframe Project or is sponsoring the event has no impact on whether talks from their developers will be selected. However, being a community leader does have an impact, as program committee members will often rate talks from the creators or leaders of an open source project more highly. A key focus will be on work within Open Mainframe Project’s 21 hosted projects/working groups, or contributions that otherwise add value to the ecosystem.

Early Bird pricing of $500 for general admission or $40 for academic attendees will end July 8. Click here to register.

Sponsor Now

Open Mainframe Summit is made possible with support from sponsors, especially our first Gold Sponsor Vicom Infinity, a Converge Company. To become a sponsor, click here.

For more details about Open Mainframe or to watch the videos for Open Mainframe Summit 2021, check out the Open Mainframe Project 2021 Annual Report.

For more about Open Mainframe Project, visit https://www.openmainframeproject.org/

About the Open Mainframe Project

The Open Mainframe Project is intended to serve as a focal point for deployment and use of Linux and Open Source in a mainframe computing environment. With a vision of Open Source on the Mainframe as the standard for enterprise class systems and applications, the project’s mission is to build community and adoption of Open Source on the mainframe by eliminating barriers to Open Source adoption on the mainframe, demonstrating value of the mainframe on technical and business levels, and strengthening collaboration points and resources for the community to thrive. Learn more about the project at https://www.openmainframeproject.org.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

###

 

SAN FRANCISCO, August 14, 2019The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced today that enrollment is now open for the new DevOps and SRE Fundamentals – Implementing Continuous Delivery eLearning course. The course will help an organization be more agile, deliver features rapidly, while at the same time being able to achieve non-functional requirements such as availability, reliability, scalability, security, etc. 

According to Chris Aniszczyk, CTO of the Cloud Native Computing Foundation, “The rise of cloud native computing and site reliability engineering are changing the way applications are built, tested, and deployed. The past few years have seen a shift towards having Site Reliability Engineers (SREs) on staff instead of just plain old sysadmins; building familiarity with SRE principles and continuous delivery open source projects are an excellent career investment.”

The open containers ecosystem with Docker and Kubernetes at the forefront is revolutionizing software delivery. Developed by Gourav Shah, founder of the School of Devops, the DevOps and SRE Fundamentals – Implementing Continuous Delivery (LFS261) course introduces learners to the fundamentals of Continuous Integration (CI) and Continuous Delivery (CD) within an open container ecosystem. The course takes a project-based approach to help learners  understand and implement key practices. 

Software Developers– will learn how to deliver software safer, faster and reliably 

Quality Analysts– will learn how to set up automated testing, leverage disposable environments, and integrate it with CI tools such as Jenkins and Docker

Operations Engineers, System Administrators, DevOps/SRE practitioners-will learn how to reliably deploy software and securely manage production environments.

Build and Release Engineers– will learn how to deploy software safely and continuously.

DevOps and SRE Fundamentals – Implementing Continuous Delivery teaches the skills to deploy software with confidence, agility and high reliability using modern practices such as Continuous Integration and Continuous Delivery, and tools such as git, Jenkins, Docker, Kubernetes, and Spinnaker. 

This video-based course teaches the following:

  • What Continuous Integration and Continuous Delivery is and why they are needed
  • How the container ecosystem is revolutionizing software delivery and the role played by Docker and Kubernetes
  • How to use Git and GitHub for revision control and to support collaborative development
  • How to install and configure Jenkins as a Continuous Integration platform
  • How to write a pipeline-as-a-code using a declarative syntax with Jenkinsfiles
  • How to create and enforce development workflows as code reviews
  • How to standardize application packaging and distribution with Docker and Docker Registry
  • Continuous Deployment and Delivery, and how they compare with Continuous Integration
  • How to use Kubernetes to deploy applications with high availability, scalability and resilience
  • How to use Spinnaker to set up multi-cloud deployment pipelines
  • How to safely release software with Blue/Green, Highlander, and Canary release strategies.

The 2018 Open Source Jobs Report from Dice and the Linux Foundation highlighted the strong popularity of DevOps practices, along with cloud and container technologies. DevOps skills are in high demand, and DevOps jobs are among the highest paid tech jobs. This online eLearning course allows participants to be at the forefront of revolutionary technology advancements and ahead of the learning curve. 

DevOps and SRE Fundamentals – Implementing Continuous Delivery is available for $299. Visit here to learn more details.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage.

Linux is a registered trademark of Linus Torvalds.

# # #

Media Contact:

Clyde Seepersad

The Linux Foundation

404-964-6973

cseepersad@linuxfoundation.org