Published: 29 April 2014
Summary
Much has been written about DevOps, but very little has been done to address the role of security and risk management within that context. This research identifies opportunities for security teams and developers to reap benefits from a DevOps movement while evolving the state of security.
Included in Full Research
- A DevOps Primer
- Systems Thinking and Automation
- Continuous Improvement
- Transparency and Accountability
- Technical Debt and Security Debt
- Leveraging DevOps to Evolve Security Practices
- Integrating Security Into a DevOps Environment
- Operating Security According to DevOps Principles
- Developers: Take Your Stake in Security
- Other DevOps Lessons
- Empowerment and Accountability
- Leverage a Pace-Layered Approach for Risk Triage
- Engineer for Resilience and Survivability
- The Importance of Mentorship, Training and Education
- Streamline and Optimize Risk Management
- Dissolve Operational Security Duties Into Operations
- Push/Pull Application Security Left
- Leverage Tool Chains and Automation
- Maximize Detection, Correction and Accountability