“The ‘lean’ concept has proved incredibly effective for organizations from manufacturing facilities to startups”
Daniel Riedel, CEO, New Context
“It’s been a long-standing misconception that it is nearly impossible for a company’s software development team to meet the trifecta of being able to push code to production faster, develop more secure code and still reduce costs within the software development lifecycle. Our Lean Security practices buck that notion and is proving to be an effective model for our clients to meet their strategic goals.”
Andrew Storms, VP Security Services, New Context
“Our Lean Security approach is the combination of several disciplines to ensure a holistic view of an organization’s online software and infrastructure. This holistic view strengthens the company’s IT architecture. This service brings Agile, DevOps, Security Policy and Compliance together into one practice.”

What is Lean Security™?

Delivering secure software on time, while reducing costs and maintaining compliance requirements is achievable. We’ve seen what DevOps has done to break down barriers in an organization and decrease time to market. Sadly, DevOps on its own still alienates security and compliance teams.

The Lean Security approach offers the fresh look at software development practices to encompass reduction in waste and time to market while simultaneously meeting the security and compliance needs that are a requirement in our modern day environment full of nefarious attackers.

The idea behind LEAN SECURITY principles is to not only enable developers and operations teams to better sync up throughout the software engineering process, but to also bake in security from the get-go.

When done right, this methodology can not only speed time to market and help engineers continuously improve software offerings, but also reduce risk and waste in the process. We’ll dive into the principles behind our approach, practical tips in applying them and lessons learned from real-world case studies. This offers a look at the intersection of DevOps and security that has yet to be explored at this depth in a business book or in the trade media.

THE AUTHORS

Daniel RiedelCEO, New Context Services
Daniel Riedel serves as Chief Executive Officer and Board Director of New Context, a Lean Security Firm. With over 20 years of experience in technology and operational infrastructure, Riedel is an entrepreneur with experience building secure, scalable technologies and businesses. He has broad experience in engineering, security, operations, analytics and product development.
Andrew StormsVP Security Services, New Context Services
Andrew Storms serves as the Vice President of Security Services at New Context. He has been leading IT, Security and Compliance teams for the past 2 decades at companies like CloudPassage, nCircle and Tripwire. Storms’ advocacy on IT security issues has appeared in CNBC, Forbes and The New York Times. He is a CISSP, a member of Infragard and a graduate of the FBI Citizens’ Academy.
Ericka Chickowski Freelance Writer
An award-winning freelance writer, Ericka Chickowski covers information technology and business innovation. Her perspectives on business and technology have appeared in dozens of trade and consumer magazines, including Entrepreneur, Consumers Digest, Channel Insider, CIO Insight, Dark Reading and InformationWeek. She’s made it her specialty to explain in plain English how technology trends affect real people.