Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Software DevelopmentDevOps

Multiple environments32%

Segregation of duty42%

Authentication60%

QA testing50%

Key management28%

Security protocols29%

Encryption16%

Other (share details in comments)2%

426 PARTICIPANTS
2.9k viewscircle icon1 Comment
Sort by:
Field CTO in IT Services2 years ago

Additionally, for many regulated industries, enabling traceability from code back to the requirements is needed, alongside the devsecops pipelines ensuring that individual control assessment and attestation is retained and available for compliance/audit/regulators etc as required. 

Content you might like

Do you still use bare-metal servers in your company?

Yes81%

Everything is on the cloud18%

Any tips for establishing a security champions program for the software team? If you’ve done this, did you run into any internal pushback or skepticism?

How many DevOps or DevSecOps resources have access to touch, add or change source code via your CI/CD pipeline?

0-2544%

26-5045%

51-1009%

100+1%

View Results

Do you use React Native for your company's mobile development? If so, what's the outlook for 2026? And how do you handle scalability, security, and resilience?

How are you tracking developer feedback/sentiment? Do you tie those metrics in with overall productivity measurements?

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply. | Gartner Peer Community