What is Azure DevOps?
Azure helps developers and IT professionals streamline DevOps application workflows so that they can build better software for their customers over iterative timescales. This includes tools for full project visibility for team members, full-stack monitoring and alerts, multiple delivery pipelines, and automated development and testing capabilities through Visual Studio and GitHub.
To do this, Azure implements several layers of interoperability across management, IT support, and development. Application development teams enjoy full access and visibility across all projects, including code access via Visual Studio, and automated testing and workflows.
DevOps isn’t a one-size-fits-all solution, however, so different platforms offer different workflow tools and integrations. Azure offers significant functionality for teams because Microsoft has built it to encompass advanced workflows, insights, and integrations on a single platform.
Contrast Security and Azure security integrations
To highlight how Azure empowers DevOps security workflows, Microsoft is hosting a live stream with one of our partners Contrast Security. This event will feature a live coding demonstration on how to integrate Contrast Security tools into your Azure DevOps workflow.
As part of this live event, Contrast Security will discuss security integration into Azure DevOps capabilities.
Contrast Security is the largest provider of application security in the world. To facilitate secure DevOps workflows, Contrast provides solutions that infuse application code with “sensors”, or bits of testing code that can detect potential security vulnerabilities.
The work required to integrate Contrast tools is rather simple. Contrast Security tools offer direct integration with products like Azure Visual Studio, which means that your Contrast Security assessments are testing your working code.
What’s important about this is that it allows Contrast tools to fit into your exiting Azure DevOps workflow. For example, once you’ve integrated Azure with Contrast, you’re ready to start tracking bugs in your app immediately. This integration provides a straightforward way to map vulnerabilities so that you can identify, sort, and track bugs and security flaws in a single location.
All the vulnerability and bug tracking occur in the Contrast Security dashboard. Once you’ve highlighted the vulnerabilities you want to address, you can send them directly to Azure as work items. All the information for the vulnerability, including risks, recommendations, and deep links to the Contrast assessment are all part of the item.
Then, it is simply a matter of assigning that item to someone on your team as a part of your existing DevOps workflow. Items sent from Contrast to Azure show as work tickets that team members can pick up and work on as part of their normal testing procedure.
This isn’t just for development code. You can perform live tests on an application to detect vulnerabilities through Contrast and funnel alerts and issues in the way described above.
Join the live-streaming event
This is just one of many ways that you can integrate Contrast tools with your Azure DevOps workflow. If you want to learn more about this process and how to expand your Azure DevOps security, then be sure to attend our live streaming event which will feature engineers from Contrast Security teaching one of our Cloud Solution Architects how to implement and integrate Contrast DevOps solutions with Azure.
The stream is available for everyone to attend and will go live on May 27th at 11 am PST on Microsoft Mixer. You can view the Livestream here.
We hope to see you there.
To learn more about Azure DevOps, explore these resources: