DevOps and Security: How to Overcome Cultural Challenges and Transform to True DevSecOps

Jan 22 2018

How can the cultural shift to DevSecOps start to happen? Make collaboration a key component. Security needs to develop more of an engineering mindset and development needs to have better awareness and understanding of security vulnerabilities and start thinking about security with every line of code. Automating and orchestrating testing into the software development lifecycle can facilitate this process — from code commit, with static code analysis and source code composition on the far left, to deployment, with dynamic penetration testing and OWASP vulnerability detection on the far right. Employ continuous testing and feedback loops. Normalize and correlate the results of the different tools already in use to prioritize results for actionable items. Read more

  • Share: