As more enterprises adopt the cloud, the issue of cloud security has become a top priority. The cloud is fundamentally different than the datacenter. Just as it requires a shift in how we think about architecture and operations, we need to shift our thinking on cloud security and compliance and bake it into DevOps and CI/CD processes (i.e., .

Last week, Fugue released its Cloud Infrastructure Misconfiguration Report, which presents the results of our survey of more than 300 IT and security professionals from enterprise-level organizations. What surprised many of us at Fugue the most was the steep cost incurred by enterprises in their attempt to manage cloud misconfiguration, which is.

Our own Alex Schoof spoke at Velocity EU 2015 in Amsterdam on managing secrets at scale in the cloud. It was a highly rated talk that earned a write-up in InfoQ. Alex will be presenting this talk at tonight’s DevOps DC Meetup in Arlington, VA.

You can view the slides from his talk on SlideShare and view his talk on Vimeo.

What was your favorite technology you received as a holiday gift when you were a kid?

Here are their answers, in alphabetical order:

Andrew

"When I was in third grade, my mother brought home a copy of Macromedia (now Adobe) Flash. I was totally dazzled with how easily I could create.

What software are you most thankful for?

Here are their answers, in alphabetical order so we don't play favorites in the ongoing Emacs vs. Vim battle:

Alex

"I'm thankful for netcat. It's the Swiss Army knife of networking. It's never something that I think to install or use.

Immutable infrastructure brings a variety of benefits, including:

• simplifying operations,

• increasing system reliability, and

• continuous deployment with fewer failures.

To that end, we're excited to collaborate with O'Reilly.

Startups don't care about security.

We hear this a lot. It may be a descendant of "developers don't care about security… that's InfoSec's concern," a situation where at least someone in the organization was paying attention to security. In the developer-dominated world of tech startups, such a statement would be nonsensical. If a startup.