Back in 2012, in a report called “DevOpsSec: Creating the Agile Triangle,” Gartner identified the need for information security professionals to become actively involved in devops initiatives.

Five years and more than 24 billion Docker image pulls later, that need is now a full-blown imperative. As I’ve written in InfoWorld before, devsecops needs to be led by the security team members because they are the ones ultimately responsible for the cyber security posture of the enterprise.

Those tasked with implementing devsecops should expect a learning curve as they bond with devops teams, familiarize themselves with concepts such as continuous delivery and tools like Jenkins and Docker, and determine how to best implement devsecops into their organizations.To read this article in full, please click here

Leave a Reply