Add heterogenous computing environments to the mix, and it's no wonder that the role of application delivery and security within DevOps has never been more onerous. Selecting an application delivery solution that maximises automation and integrates into an existing DevOps environment is critical.
Here are four reasons why application delivery is critical to supporting DevOps.
1. Production-ready automation
CI/CD and agile development methodologies require IT experts from different domains, (i.e., application, storage, network security, application delivery), to deploy new application services and their associated policies. Traditionally, they've had to invest in long, tedious provisioning and programming tasks that are often repetitive and require specific domain expertise to execute.
In a DevOps-driven world, this is no longer possible. IT requires workflow automation so that even non-technical experts can develop and craft application delivery and security workflows. According to Radware research, over half (53 percent) of organisations don't integrate application protection into CI/CD processes.
|
|
This is why IT operations requires an evolution, transitioning from simple scripts to standard-based, production-ready modules. The goal? To enable anybody from the different teams to deploy and manage services regardless of the domain expertise he or she possesses.
2. Automated ADC and security
The marketplace for application delivery and security solutions is as diverse as their capabilities. Selecting one that integrates with an application provisioning and deployment solution, such as Ansible, is critical to enabling end-to-end automation.
Traditionally, deploying a new application delivery service has meant writing and managing a monolithic, gargantuan script to automate the workflow. Each application deployment requires a different workflow, and thus, a different script. DevOps requires these monolithic codes to be broken into discrete operations to speed time to development and deployment.
Underlying application delivery and security services that support these applications are no exception to this rule. An enterprise-grade ADC should provide pre-defined/production ready modules and integration with DevOp orchestration tools to allow non-technical users to spin up and deploy application and security services.
Traditionally, if an error occurs, a review and QA of the code would be required. In a module-based world, errors become more transparent and segmented. For example, if only the application security policy is incorrect, the problem can be identified, fixed and only the security policy rerun, versus the entire script-based workflow.
3. Re-use and repurpose
Production-ready modules provide the ability to reuse and repurpose. If a particular module, such as the application security module, requires update, SecOps can make that update, create a subversion if necessary and apply it to other application workflows. Changes are isolated to the specific module and don't impact other aspects of the workflow.
Finally, an application owner, versus an ADC expert, can make these changes to the application security module, or other modules. For example, while application servers and security policies can reside with the application owner, VLAN operations might be the responsibility of a network administrator. Now, a single person can manage this normally disparate responsibilities, thereby saving time to market.
This modularised approach also means switching from staging to production and back seamlessly. Changes to workflow parameters made within a staging environment can be pushed to production following staging. These capabilities support CI/CD processes by minimising human errors and reducing downtime.
4. Enterprise-grade ADC capabilities
Finally, any application delivery solution must combine ease of use with advanced application delivery capabilities, such as optimising Layer 7 load balancing deploying and managing application security policies. This further enhances the capabilities of any DevOps orchestration tool.
