SecDevOps - Over the past 5–10 years there has been a shift in product and service development to use more agile methodologies to provide more continuous delivery.

QUESTION 1:

Considering the article below: Comment on at least two (2) security concerns with a DevOps model and how these concerns can be alleviated with a strong implementation of SecDevOps considerations.

-----------------------------------------------

Agility has become an unavoidable necessity in a fast-moving technology environment, but achieving it can be a challenge for organizations and their development teams. The DevOps philosophy provides a road map; following it is not always as easy.

Even more crucial than the need to transform the development process is the need to protect against ever more sophisticated threats and attacks. But some organizations are finding that agility and security can go hand in hand. SecDevOps is an approach to development that puts security right at the heart of DevOps by making it integral to the development cycle.

SecDevOps: Bridging the Gap Between Security and Agility

According to CIO Insight, organizations such as the endowment-based Dana Foundation have found the SecDevOps approach to be an effective way to bring security into DevOps. The result is faster development cycles and more robust security.

The Dana Foundation is primarily engaged in two fields: web activities related to grant management and publishing and outreach operations, including an annual brain awareness week. James Rutt, the company’s chief information officer (CIO), told CIO Insight that the organization was primarily concerned with “code quality and code security,” with a particular focus on protecting against known code vulnerabilities listed in the Open Web Application Security Project (OWASP) Top 10, such as cross-site scripting and forgery.

The SecDevOps approach helped the company speed up its development process while reducing code vulnerabilities by 40 to 50 percent. This impressive performance shows why and how security and agility can form a perfect partnership.

Building Security Into the DevOps Cycle

Experts have been preaching for years that security needs to be built in, not bolted on after the fact. But the combination of conventional, prolonged development cycles with a fluid security environment has made built-in security almost impossible to achieve. After all, if new versions of a software package were only released every couple of years, the security environment would be radically transformed between two successive versions. Developers had no choice but to bolt on new security features.

In the world of DevOps, the software development cycle has become dramatically faster — so much faster, in fact, that code development can now match the pace of new security challenges. Developers are no longer focused on fixing existing code to handle new security threats. Instead, they are constantly building new code as part of the DevOps cycle, which means that new security features can be built in as part of the overall development process. This is exactly what the security community has been preaching all along.

SecDevOps is not a magic trick, but a natural, organic way to approach new security needs in the context of ongoing code development. This is very good news for organizations that are shifting into the DevOps era.

10Na + 2NaNo3 yields 6Na2O + N2

how many grams of sodium oxide will be made by combining 25.0 grams of sodium with 47.0 grams of sodium nitrate?

Balance the given redox reaction.

NaClO₃ + H₂O + I₂ --> HIO₃ + NaCl

?please show all steps

How many ways are there to arrange the letters a, b, c, d, e, and f such that a is not directly followed by either b or c? For example, “abdef c” and “acdef b” are both invalid, but “adbcef” is valid.

Income statements and balance sheets data for Virtual Gaming Systems are provided below.

Required:

1. Calculate the following risk ratios for 2018 and 2019: (Round your answers to 1 decimal place.)

Receivables turnover ratio,Inventory turnover ration, Current ration and Debt to equity ratio.

2. Calculate the following profitability ratios for 2018 and 2019: (Round your answers to 1 decimal place.)

Gross profit ratio, Return on assets, Profit margin and Asset turnover

>>>>>C#<<<<<

A.     Number Frequency-Arrays

1. Write a program to count the number of 10’s in the given list of 15 numbers. The output should look like:                                                                                                        [01]
2. Extend your program to work with a list of n numbers.                                         [01]

          Random Numbers-Methods

1. Write a program to generate a 10 Random Numbers:                                           [01]
2. Extend your program to generate n Random numbers.                                         [01]

B.    Word Count -String Processing

1. Write a program to count the occurrence of word “an” in the string.               [01]
2. Extend your program to count the occurrence of string being input in the string.

               [01]

C.      Recursion

          By using recursion, write a program to:

1. Print digits in a number.                                                                                                                [01]
2. Find sum of digits of a number.                                                                                                  [01]

D.        Matrix Manipulation

Write a C# program to Perform Matrix Multiplication.                                                                      [02]

Note:-

The matrix multiplication can be performed only if:

• The number of columns of the first matrix is equal to
• The number of rows of the second matrix

The Directors of Lolipop Ltd are currently considering two mutually exclusive investment projects. Both projects are concerned with the purchase of new plant. The following data are available for each project

Project A Project B

$'m

Cost( immediate outlay ) 100 60

Expected annual net profit (loss)

Year 1 29 18

Year 2 (1) (2)

Year 3 2 4

Estimated residual value of the plant 7 6

The minimum expected return by the shareholders is 10%. the Industrial average cost of capital is 12%. The company uses the straight line method of depreciation for all non-current (fixed )assets when calculating profit. Neither project would increase the working capital of the business. The business has sufficient funds to meet all capital expenditure requirements . The company expects to pay a total constant dividend of $ million per year for the next three ( 3) years.

Required

a) Calculate for each project

1. Accounting Rate of Return

2. The PayBack period

3. The NPV

4. The approximate IRR

Advise the directors which project should be undertaken

b) State which method of investment appraisal in (a) above you consider to b e most appropriate for calculating investment projects and why

c) Explain three (3) factors that may affect the dividend policy of Lolipop Ltd

Devise a procedure for the separation and purification of the mixture containing 0.25g benzoic acid, 0.20g benzil, 0.05 p-dichlorobenzene.

Available reagents: 1M NaOH, 1M HCI, 1M NaHCO3, 6 M NaOH, 6 M HCI, saturated solution of NaCl, diethyl ether, 95% ethanol, methanol, isopropyl alcohol, acetone, hexane, toluene, ethyl acetate, anhydrous sodium sulfate.

Suppose that you are the manager of a local deli. Give an example of each of the following decisions that you might have to make and identify three factors that would be relevant to each decision:

1. Special order.
2. Make or buy.
3. Keep or drop.

1.  XYZ Company, a manufacturer of computer peripheries, assembles a particular product line at a wholly owned facility in Singapore. The product is designed at XYZ’s headquarters in the United States, but the different components used in the assembly process are manufactured throughout Asia and shipped to Singapore for final assembly. Some of the components are manufactured in multiple locations, so the customer can actually designate where XYZ should source the components. The final product is assembled in Singapore and then shipped via Emery Freight to customers throughout Asia. XYZ Singapore does not buy any components from the United States, but it invoices all of the components purchased from Asian suppliers in U.S. dollars. In addition, it sells the product to Asian customers in U.S. dollars. However, all of its expenses in Singapore are paid in Singapore dollars. Most of the key marketing decisions are made by the U.S. marketing staff, although the Singapore staff acts as a liaison with Emery Freight personnel and deals with the local workers, most of whom come from Sri Lanka on short-term work visas.

     XYZ prefers to translate the results of their Singapore subsidiary into dollars using the current rate method. What is the advantage to XYZ of using the current rate method? As their auditor, what do you think of their decision? If their decision is wrong and they should be using the temporal method, is it possible for them to change?

You have joined a northern mail order company selling winter coats. You have the coat sales by quarter for the last three years.

Year 1 Qtr 1, 24 Winter Coats Qtr 2, 12 Qtr 3, 20 Qtr 4, 36 Year 2 Qtr 1, 28 Winter Coats Qtr 2, 10 Qtr 3, 22 Qtr 4, 40 Year 3 Qtr 1, 32 Winter coats Qtr 2, 14 Qtr 3, 27 Qtr 4, 44

Use linear regression to forecast the total coats to be sold in year 4 in thousands. For the equation Y = aX + b give "a".   ____ (two decimals) Give "b" ____ (two decimals)

Give the forecast for the fourth year? ____ (two decimals)Next use the quarters to generate seasonal factors. Give the season factor for quarter one? ____ (two decimals)

Give the season factor for quarter two? _____ (two decimals)Give the season factor for quarter three? _____ (two decimals) Give the season factor for quarter four? ______ (two decimals) Give the forecasted sales for quarter one? ______ (All answers remaining to two decimals) Quarter two? ______Quarter three? ______Quarter four? _____

Explain when and how the following are constructed and used. software engineering
a. Data Flow Diagrams
b. Activity Diagrams

In a drag race, the position of a car as a function of time is given by x=bt2, with b = 2.045m/s2 . In an attempt to determine the car's velocity midway down a 400-m track, two observers stand at the 165-m and 235-m marks and note the time when the car passes.What value do the two observers compute for the car's velocity over this 70m stretch?

Monochlorobenzene (C6H5Cl) is produced commercially by the direct catalytic chlorination of benzene (C6H6). In the process, dichlorobenzene(C6H4Cl2) is generated as a coproduct.

?6?6 + ??2 → ?6?5?? + ??? ?6?5?? + ??2 → ?6?4??2 + ???

Given that the molar ratio of benzene to chlorine in the feed is 5 to 1; and the feed contains only benzene and chlorine. Chlorine is the limiting reactant and completely consumed in the reaction. The fractional yield of C6H5Cl is 0.875

. a. Take a basis of 100 mol C6H5Cl produced, draw and label a flowchart. Do a degree of freedom analysis based on atomic species balances.

b. Calculate the amount of feed and product components of the reactor using the atomic species balances. Present the calculated values in a table to prove that the total mass to the reactor is equal to the total mass out from the reactor (mass conservation).

c. Calculate the percentage conversion of C6H6. The value that you have calculated should be low. Why do you think the reactor would be designed for low conversion? What additional processing steps are likely to take place downstream of the reactor in order to improve the conversion?