Putting the “sec” in DevSecOps: An overall reduction of risk

2021-11-29 06:00

In this Help Net Security interview, Cindy Blake, Senior Security Evangelist at GitLab, talks about the importance of integrating security in DevSecOps and how to overcome the complexity of such integration.

The good news is many organizations have shifted security left, or at least started on their journey, in an effort to improve development velocity while also managing security risks - in fact, the survey also found that 35.9% develop software using DevSecOps, as compared to only 27% in 2020.

While security has been traditionally neglected, organizations are beginning to value the importance of security in their DevOps processes.

Proper DevSecOps will ultimately improve simplicity, provide earlier visibility, and give greater control over the security of the end-to-end SDLC. Building security into the entire DevOps pipeline is key for agility, advancement, and protection, and ultimately will save businesses time, money, and resources when done right.

DevSecOps integrates security controls and best practices into the DevOps workflow through CI/CD pipelines.

The benefits of strong DevSecOps are clear - and the "Sec" in DevSecOps will be more important than ever before as organizations realize the benefits with fewer vulnerabilities, faster deployments, less time spent in corrective actions, and an overall reduction of risk.

News URL

https://www.helpnetsecurity.com/2021/11/29/security-devsecops/

#devsecops #SEC