Mastek Blog

Bhavin Shah

Dynamic and results-driven Technology leader with over 25+ years of global experience (US, UK, ME, IN) in business enablement, GTM strategy, software delivery for new age technology service offerings. Bhavin has been instrumental in building AWS, DevSecOps, Quality Engineering practices with focus on Market Making, Capability creation and Lead to Cash Cycle. Bhavin is r esponsible for Global P&L Management, Competency Building, Talent Development, Pipeline Enablement, Develop Value Propositions aligned to strategic growth objectives of the Service Line organization.
Find me on:

Recent Posts

AWS re:Invent 2023 - Key takeaways concerning Generative AI

08-Feb-2024 23:29:38 / by Bhavin Shah



Read More

Why is SecOps needed now more than ever?

26-May-2022 11:41:37 / by Bhavin Shah posted in #DevSecOps #SecOps #IAST #DAST #SAST #RASP



Impacts of changing landscape

    1. Two years into the deadly and disruptive global pandemic, not only are we continuing to see more attacks, but we’re also seeing more actual breaches which result in significant financial losses, reduction in getting new business, and losing trust with existing customers.
    2. In today's scenario, most organizations have adopted agile methods for software development which has shortened Go-To-Market by deploying changes quickly to the production environment. A security vulnerability leak could cause significant damage in no time and the cost of such an incident might outweigh the security budget
    3. Implementing security keeps getting harder with more threats, complexity, and fewer people and hence we see a lot more cyberattacks and breaches
    4. Top 3 attacks of 2021:
      1. SolarWinds attack had 18000 customers impacted
      2. REvil hit Apple supplier Quanta with a $50 million ransomware attack
      3. Apache Log4j, a zero-day vulnerability attempted to exploit more than 48% of corporate networks globally.
    5. 2022 so far:
      1. The war in Eastern Europe has triggered cyber warfare (criminal ransomware, hacktivists or other disruptive attacks against government or critical infrastructure) with potential disruptive activities and information operations to erode popular sentiment and political will.
    6. Major causes for vulnerabilities:
      1. Current trend as per Trend Micro:
        1. 80% of application code is open source
        2. 2.5x increase in open source vulnerabilities in the last 3 years
        3. 78% of vulnerabilities are found in in-direct dependencies
      2. As per Gartner, through 2023, at least 99% of cloud security failures will be the customer’s fault, mainly in the form of cloud resource misconfiguration.
    7. A 2021 report suggests that because healthcare organizations are less likely to back up their data than those in other industries, they are more prone to paying the demands of ransomware actors. Please refer to Figure 1 for its trend.


Read More

Transform, Package & Deploy faster and secure with DevSecOps

29-Jul-2021 01:47:52 / by Bhavin Shah posted in DevOps culture, AppDev, Devact, DevSecOps, Security, Automation


Do you practice DevOps?

It is time to take complete advantage of its agility and responsiveness by including security as an integral part of the entire app life cycle.

Integrate and automate security in your DevOps practice

Many organizations aim to shorten their system’s development life cycle and provide continuous delivery with high software quality. Where DevOps combines a system’s software development and IT operations, the Security team catches the bugs & vulnerabilities during the development stage to ensure that no errors are faced after the application's release. It safeguards the application release and the company’s reputation in the public market.
Read More

Subscribe to Email Updates

Lists by Topic

see all

Posts by Topic

see all

Recent Posts