Security News > 2022 > June > 7 DevSecOps myths and how to overcome them

7 DevSecOps myths and how to overcome them
2022-06-22 04:00

DevOps teams have historically viewed security teams as the "Release prevention department" with overly conservative approaches to risk mitigation.

Security teams think accelerated software releases pose too great a risk to governance, security and regulatory controls.

Myth 1: Security and compliance are a single point in the software delivery process.

Developers should absolutely be concerned about security - we're here saying security is everyone's problem - but expecting development teams to handle security in addition to their job description is a good way to stifle innovation and breed resentment.

Shifting security everywhere through an end-to-end software delivery solution allows you to bake in security from the beginning, and throughout the entire pipeline.

Advanced DevSecOps enables automated security and compliance testing while enforcing the use of approved components.


News URL

https://www.helpnetsecurity.com/2022/06/22/7-devsecops-myths-how-to-overcome-them/