UPDATED 15:53 EST / SEPTEMBER 17 2021

CLOUD

Orgs should adopt policy-centric approach for on-prem DevOps deployment, says Tufin CEO

Many developers see network security as something of a hindrance — one extra step in the way of implementing improvements in an application.

In an organizational setting where most deployment operations are done on-premises, this hindrance to digital transformation becomes even more pronounced.

“Companies have applications that in-house developers are writing, and those developers are changing their apps all the time,” said Ruvi Kitov (pictured), co-founder, chairman and chief executive officer of Tufin Software Technologies Ltd. “So you end up having dozens of change requests from developers who want to open connectivity.”

Kitov spoke with John Furrier, host of theCUBE, SiliconANGLE Media’s livestreaming studio, during the Fortinet Security Summit. They discussed the current perception of SecOps from an organizational perspective, with special respect to on-prem workloads. (* Disclosure below.)

How companies can remedy the issue

The usual communication flow between developers and network security personnel involves opening tickets ahead of app changes. Because every update or code deployment has to be signed off by the in-house network security team, the internal software development process is often slowed down considerably, according to Kitov. In contrast, organizations and their development teams are seeing huge gains in speed and agility through cloud deployment.

“They’re managing AWS Azure, Google Cloud, they’re managing GitHub. You know, they got the place to themselves. So they’re pushing changes in their apps without asking IT for permission. So they’re suddenly exposed to ‘this is how fast it can really be,'” he said.

To bridge the chasm between the on-prem and cloud-based deployment systems, there needs to be an automated approach to policy for on-prem operations especially, Kitov asserted.

“A developer wants to make a change; they open a ticket. That ticket reaches some system that’s going to check for compliance against the policy. If you’re able to immediately tell if that change is compliant or not, then you’re able to make that split-second decision, which might take an analyst a couple of days. And then you can design the perfect minimal change to implement on the network. That is really agile,” he said, expanding on the proposed policy solution.

Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s coverage of the Fortinet Security Summit. (* Disclosure: TheCUBE is a paid media partner for the Fortinet Security Summit. Neither Fortinet Inc., the sponsor for theCUBE’s event coverage, nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)

Photo: SiliconANGLE

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU