How do you compile and maintain a list of 3rd party software services being integrated in your code base by devs?

Architecture Strategy

Developer and PM interviews, Google/Excel sheet32%

Formal process to OK any integration via Jira/ticketing - then list is created/maintained76%

No clean way - Look at traffic rom VPS, use NDR, sort unique domains36%

Custom tool - goes and finds API calls embedded in code magically6%

256 PARTICIPANTS

2.4k views3 Comments

Sort by:

Strategic Banking IT advisor in Bankinga year ago

I would also add to this the increasing number of Javascript libraries. As we're not using CDNJS or anything similar but rather deploy the libraries in our own environment, maintaining and keeping track of them is complex.

This is specially true when it comes to security issues requiring to update the librairies.

Head of Corporate Development2 years ago

Who owns the process for formal ticketing? is it Product management, security, GRC and How is the hammer brought down? essentially in too many places I have seen the process exist but to actually see it work given differing levels of commitment via PMs is a major issue from an implementation perspective.

Head of Corporate Development2 years ago

What custom tools have you built?especially given that 3rd party APIs are rarely ever in openapi2/swagger compliant spec.

Content you might like

What level of visibility into the business is needed for you to make quick strategy changes for the IT department? Do you feel like you currently have enough data and insights to pivot quickly?

Looking at users who have adopted self-serve analytics at your org, how many do you believe are getting the full value of it?

All active users21%

Most active users40%

Half of active users31%

Less than half of active users5%

Only a few active users

None

View Results

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

How valuable to maintaining Linux system version and configuration consistency 100% of the time is a sys admin being able to see the aggregate compliance of a group of system?

Highly Valuable25%

Moderately Valuable48%

Not valuable at all26%

View Results

What do you consider a best practice for retaining/releasing unnecessary domain names? In this case, specialized domains tied to marketing campaigns.

While the expense is small and there is some possibility for a bad actor to acquire and use for malicious activity, I question keeping domains of this sort "forever."

How do you handle this?

How do you compile and maintain a list of 3rd party software services being integrated in your code base by devs?

Sort by:

Content you might like

What level of visibility into the business is needed for you to make quick strategy changes for the IT department? Do you feel like you currently have enough data and insights to pivot quickly?

Looking at users who have adopted self-serve analytics at your org, how many do you believe are getting the full value of it?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

How valuable to maintaining Linux system version and configuration consistency 100% of the time is a sys admin being able to see the aggregate compliance of a group of system?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

2024 Product Management Priorities and Challenges

Data-Driven Customer Experience: Uniting D&A and CX Teams

Navigating Economic Uncertainty in 2024: IT Leader Perspectives

Take Your Insights On-the-Go