Changing the delivery of IT

Tony Bishop

Subscribe to Tony Bishop: eMailAlertsEmail Alerts
Get Tony Bishop: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Related Topics: IT Strategy, Cloud Application Management

Cloud App Mgmt.: Opinion

Fortify Is More Than a Quick Fill for HP Testing

Facilitating a collaborative network for development, operations and security teams

HP's acquisition of Fortify looks like a quick filler for a hole in HP's testing portfolio.  However, it seems to me that the move is indicative of the changes in how enterprises are looking to manage their applications. Just as achieving  business agility is more than rapidly developing software, managing business risks is more than complying to SOX or PCI regulations.

Managing business risks is about embedding security policies in how IT activities are completed.  Some enterprises have started operationalizing their security practices, by improving the way their security and operations teams work together. Fortify grew its business by strengthening collaboration between development and security teams, the goal being a secured development process.

It seems to me that Fortify's lifecycle approach for secure development can be used to further expand HP's view of the application lifecycle. HP's recent strategy for application lifecycle management goes beyond the Software Development Life Cycle (SDLC) to provide application managers equal visibility into key aspects of both Build and Run phases of the lifecycle.  The Fortify acquisition opens the door for HP to provide security managers the same visibility across the application lifecycle. This would start with the Build phase which Fortify is known for, and then include the Run phase over time as Fortify gets integrated into HP.

In effect, HP would be facilitating a collaborative network for development, operations and security teams.  Collaboration to manage business risk seems like a worthy goal for any company.

More Stories By Jasmine Noel

Jasmine Noel is a founding partner of Ptak, Noel & Associates. She has over 15 years experience analyzing and consulting on IT management issues. She currently focuses on technologies and processes that organizations require to design, engineer and manage the performance and service quality of business applications, workloads and services. Noel served previously as director of systems and applications management at Hurwitz Group, where she formulated and managed the company’s research agenda. She was also a senior analyst at D.H. Brown Associates, where her responsibilities included technology trend analysis in the network and systems management space. Noel is regularly quoted in and contributed articles to several leading publications and content portals on various IT management topics. She holds a bachelor of science from the Massachusetts Institute of Technology and a master of science from the University of Southern California.