Grounded in the Cloud
cancel
Showing results for 
Search instead for 
Did you mean: 

Industry Interview Series: Jason Schmitt, VP and GM, HPE Fortify

SimonLeech

This is the fifth in a series of videos and blogs speaking with both HPE and external subject matter experts on various aspects of hybrid cloud security. Today we speak with Jason Schmitt, VP and GM at HPE Fortify, about the importance of code assurance, and the role of security in the software development lifecycle when adopting cloud. Other videos in the series can be found by searching for the tag cloudsecinterviews.

Making application security a repeatable process in cloud migration is a key factor in making sure a cloud security program is successful. We’re lucky at HPE to have one of the best solutions on the market for code assurance, but adopting security in the software development lifecycle is more than just deploying a product – it will often require a cultural change within the organization in order to benefit from it most effectively. Recently I was lucky enough to meet with Jason Schmitt, VP and GM at HPE Fortify, to talk about the role of security in the software development lifecycle when adopting the cloud.

Jason spoke of the value of cloud in helping organizations to become more progressive about securing their applications, and how the loss of control that is often attributed to cloud helps to bring security to the top of mind. He feels that most developers ‘enjoy’ security, but security is still often seen as an afterthought, and management teams sometimes need to undergo a cultural change in order to understand that security won’t significantly slow application development cadence down, and, when done correctly, will enable security to save the organization money, rather than just being seen as a cost post.

We ended the discussion with Jason providing three pieces of advice to development teams: Get educated, make automation work for you, and focus on the risk and security as a priority. To watch the discussion in full, please click the video below.

 

 

To learn more about hybrid cloud security, download the whitepaper from 451 Research Group. You can also learn more about the HPE approach to Hybrid Cloud Security. For information about application security and Devops, and to download the recently released white paper on the state of security in DevOps, please visit this page. Other videos in the series can be found by searching for the tag cloudsecinterviews.

  • HPE Cloud
0 Kudos
About the Author

SimonLeech

Simon Leech is a Certified Information Systems Security Professional with a specialisation in Security Architecture (CISSP-ISSAP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified in Cloud Security Knowledge (CCSK) and Chief Technologist Security within the Hewlett Packard Enterprise EMEA Hybrid IT Team. Within Hewlett Packard Enterprise, Mr Leech is responsible for influencing and evangelising the security strategy of the Hybrid IT team. Simon is active on Twitter as @DigitalHeMan

Events
28-30 November
Madrid, Spain
Discover 2017 Madrid
Join us for Hewlett Packard Enterprise Discover 2017 Madrid, taking place 28-30 November at the Feria de Madrid Convention Center
Read more
See posts for dates
Online
HPE Webinars - 2017
Find out about this year's live broadcasts and on-demand webinars.
Read more
View all