As you might know, I really do waffle a bit between loving and hating DevSecOps as a concept. I think it’s great on the one hand because it’s shined a light on a lot of really bad software development practices people like John Viega, Gary McGraw and my friend Sverre Huseby have been talking about […]
When to ignore Teddy Roosevelt
I have to admit I have a lot of respect for Teddy Roosevelt and many of the things he did and said. In fact, I have his “arena” quote printed out and stuck to the wall above my desk. One of his other famous quotes is this one: “In any moment of decision, the best […]
The two key dimensions of Agile Security
Some people think agile is about going fast and being unconstrained by processes. That’s part of it, but that aspect alone is also not that far from the definition of anarchy: a state of disorder to due the absence of authority. What agile is really about is being able to make effective decisions, and that […]
Johnny and the Mothers are playin Stompin’ at the Savoy in Vermont tonight
One movie that’s stuck with me since I was a kid was Johnny Dangerously. It’s so silly it’s still funny—especially the “C’mon shelf paper!” car chase scene…but that’s fodder for another email. If you’ve seen the movie, you might remember that a critical point was when Vermin, the aptly named villain of the story, discovers […]
Why Agile’s “people over process” works…sometimes
If you ask most people new to Agile (yes, there are still some of those around), and especially if they’ve been slogging it out in the trenches of long, grueling projects…and especially in the public sector arena, you’ll get an almost universal reaction: “Hell yeah! No more f—-ing process!” And it’s kinda understandable, because process […]
