DevSecops is an extension to the Devops integrating security to the development and operations. Security shouldnt be treated as a separate entity to be implemented after devops.
Security should be implemented from the beginning phase of devops. For example:
- Development and automation by following all the security guidelines
- Implement security testing along side test automation like OWASP ZAP
- Integrate security tools in continous integration process
- Continuous monitoring of systems for early identification of security threats
- Communication between development, operations and security teams collectively work together to deliver secure application
Top comments (0)