Security News > 2023 > March > DevSecOps puts security in the software cycle

DevSecOps puts security in the software cycle
2023-03-24 21:47

The push to innovate and create can often drive software developers to move at breakneck speed to deliver new apps, updates and bug fixes - a frenetic pace that can lead to security oversight.

DevSecOps - a portmanteau for developers, cybersecurity and operations - is a collaborative method that brings principles of application security into software development and operations with as little friction and as much agility as possible.

DevSecOps bakes security into the product at every stage of the software development and delivery process, according to software intelligence firm DynaTrace, which released a white paper on the matter.

"Do I really need to automate DevOps security telemetry for a device that will not receive software upgrades?".

Experts in both developer and security fields agree that DevSecOps should involve developers in security goals.

Nair said developers rarely encounter security as a practice.


News URL

https://www.techrepublic.com/article/devsecops-security-software-cycle/