It’s hard to pinpoint when the concept of DevOps entered the mainstream. As late as 2017, implementation was still relatively sparse, with many skeptics questioning the approach or simply wondering what the fuss was all about. Today, DevSecOps is following that upward curve, with adopters trying to educate mainstreamers on the benefits, while the yet-to-be convinced often struggle to make sense of common misconceptions.
Like DevOps, DevSecOps comprises equal parts culture, process, and tooling. DevSecOps is founded on the idea that security is a shared responsibility across the engineering and security teams, which can be a cultural barrier in organizations that are more accustomed to treating security as a last step in the development process. But as more organizations adopt cloud and container technology, they can’t afford to leave security to the last minute.
To read this article in full, please click here
Support the originator by clicking the read the rest link below.
