InfoQ Homepage Business Content on InfoQ
-
How Security by Design Helped to Manage Risks in a Cloud Migration
When a company migrated to the cloud, security issues arose due to difficulties in getting stakeholders on board and involving security from the start. Embedding security assessments as part of the continuous cloud DevOps process and adopting an agile strategy for security risk management throughout the lifecycle of the project helped to increase the governance of security during the migration.
-
New CodeGuru Reviewer Features Detector Library and Security Detectors for Log-Injection Flaws
Amazon CodeGuru Reviewer is a developer tool that leverages machine learning to detect security defects in code (Java and Python) and offers suggestions for code quality improvement. Recently, AWS introduced two new features for the tool, with a new Detector Library and security detectors for Log-Injection Flaws.
-
Fair Individual Compensation for Agile Teams with Team-Set Salaries
Team-set salaries can be used to set fair compensation for individuals in multiskilled, collaborative, autonomous teams. People don’t appraise themselves, only their colleagues. It gives everyone a direct say in salary settings.
-
Amazon Launches AWS IoT RoboRunner for Robot Fleet Management Applications
Amazon recently announced the preview of AWS IoT RoboRunner, a new service to help companies build and deploy robotics management applications. Developed from technology already in use at Amazon warehouses, IoT RoboRunner provides infrastructure to connect fleets of robots and automation software.
-
Google and GitHub Announce OpenSSF Scorecards v4 with New GitHub Actions Workflow
GitHub and Google have announced the version 4 release of the Open Source Security Foundation (OpenSSF)'s Scorecards project. Scorecards is an automated security tool that identifies risky supply chain practices in open source projects. This release includes a new Scorecards GitHub Action, new security checks, and a large increase in the repositories included in the foundations weekly scans.
-
Scaling Software Architecture via Conversations: the Advice Process
Andrew Harmel-Law recently published an article describing a decentralised, scalable software architecture process based on the "Advice Process". The Advice Process promotes software architecture by encouraging a series of conversations driven by an empowering, almost anarchistic, decision-making technique. It comprises one rule - anyone can make an architectural decision.
-
How to Foster Startup-Like Innovation in Established Companies
Startup founders expect uncertainty and failure as part of their innovation process. Leaders in established companies need to make sure that people take on risks to build the next big thing. Adding small improvements to products in a constant manner will create a compounding effect over time, and will help you build the exact thing your users are looking for.
-
Becoming a Better Tech Leader with Coaching
Coaching, both personal and professional, can help to understand your potential and discover ways to exercise that potential in your daily work. For Maryam Umar, coaching has proved to be highly useful in her tech work of leading testers and engineers.
-
AWS Re-Launches Amazon Inspector with New Architecture and Features
Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure. It was first launched in 2015, and during the recent re:Invent 2021, AWS re-launched it with brand new architecture and a host of new features such as container-based workloads, integration with Amazon Event Bridge, and Security Hub.
-
AWS Releases Preview of a New Low-Code Development Tool with Amplify Studio at re:Invent
At the recent re:Invent AWS announced Amplify Studio, a new Figma-connected low-code service meant to help developers quickly build cloud-connected apps. The new tool is an extension of the existing AWS Amplify service, which focuses on building web and mobile apps but lacks the easy-to-use drag-and-drop interface of Amplify.
-
AWS Step Functions Gains Integrations with over 200 Additional Services
Amazon Web Services (AWS) recently announced that AWS Step Functions supports over 200 AWS services via an AWS SDK integration, thereby expanding the number of supported API actions from 46 to over 9,000. The new integration type can support most existing and future services and API actions going forward.
-
OutSystems Announces a Cloud-Based Development Platform Project Neo in Preview
Recently, OutSystems announced a new cloud-native application platform, called Project Neo, at their annual NextStep event. It is the first time in company history that OutSystems has launched a second platform, next to OutSystems 11 – a platform for enterprise-grade low-code development.
-
How Organisational Culture and Psychological Safety Fosters Our Creativity
Organisations need to create the right conditions and culture for creativity to flourish so as to stay relevant, compete and thrive for the future. An addiction to burnout and fixation on productivity can stifle creativity. What’s needed is psychological safety, inclusion, experimentation, growth mindsets and allowing thinking time.
-
How a Safe-to-Fail Approach Can Enable Psychological Safety in Teams
Companies can establish a culture of psychological safety among their employees, a culture in which failing is not frowned upon but rather is accepted as something that can happen to anyone. Safe-to-fail should be part of the corporate culture. A shift in the way we envision success can lead to a better understanding of where failure lies and provide courage to overcome our fears.
-
Four-Day Work Week Gaining Traction
A number of studies and reviews have recently been published which look at the changes needed and the impact of shifting to a four-day work week. The consensus is that, while there are some challenges to be overcome, generally shifting to a four-day work week results in happier, more engaged staff with increased productivity.