Together with the security analysts of the Kapsch Cyber Defense Center we developed a customer portal solution to increase the efficiency and automation in detecting, analyzing, and responding to potential cybersecurity issues threatening customer network infrastructures.
Dealing with sensitive data, privacy topics, and integration of various security appliances while ensuring frequent release cycles, required a highly automated workflow to orchestrate feature planning, source code, and vulnerability scanning, quality assurance, release management and deployments to multiple customer environments.
This talk will outline the challenges we faced during the initial phase of development and how we managed to build up an integrated CI/CD pipeline utilizing Gitlab, Jira, SwaggerHub, Docker, Cypress.io, Karate, Ansible, and Microsoft Azure.