What is DevSecOps?

-

https://thehackernews.com/2024/05/five-core-tenets-of-highly-effective.html



Dev: Software Development

Sec: Information Security

Ops: IT Operations.

DevSecOps is the collaboration of Software Development, Information Security and IT Operations that includes a set of applications, tools and mindsets. 

Main objectives and principles of DevSecOps;

  • Continuous Integration & Continuous Delivery (CI/CD)
  • Automation
  • Logging 
  • Monitoring
  • Collaboration & Comminucation
  • Mindset & Cultural Adaptation

DevOps approach covers all part of the software development lifecycle (SDLC) and is involved in all processes from planning to development, testing, deployment, and monitoring of a software. This approach allows software to be developed and delivered faster, more reliably, and more efficiently.






Comments

Post a Comment

Popular posts from this blog

Main Topics of DevOps

-
Image
  DevOps is a methodology that aims to increase communication and collaboration between software development teams, security teams and IT operations teams. Continuous Integration (CI)   : The practice of control mechanism that automate and test all code changes in a code branch. This control provides possible bugs and problems early and fix them immediately. This control cycle provides quality assurance so software quality increases.  Continuous Delivery (CD) : If code has no error and built successfully, it is sent to production environment automatically by creating CD pipeline. This is called continuous delivery. In this concept, we always "use" delivery instead of "deployment" term ☺Continuous delivery provides us transfer any changes of code to test, pre-prod or production environment. We can also automate and monitor this delivery process detailly.  Source Code Version Control Tools : These tools is very useful and important for managing and versioning code ch...
Read more

Continuous Integration and Continuous Delivery (CI / CD) Pipeline

-
Image
 In previous post, I mentioned a bit about CI/CD. Now, I will try to explain detailly about CI/CD pipeline that is main skeleton of DevOps approach. Developers and IT operation teams work together to deliver the software during CI/CD pipeline steps.  The main benefit of CI/Cd pipeline, automation of software releases. Other benefits are reduced deployment time, decreased operaiton costs, continuous feedback ann monitoring so early error detection,  enhanced reliablity and reduced downtime, increased collaboration between teams. Let's detail of CI / CD pipeline steps a bit more;  Plan:  When we are in a process of developing a software in a company, probably this is a part of a project or IT service (change or incident).  Let's suppose Agile project management. (for getting deep information about agile approach, please visit Scrum Website ) For project, Scrum Master sets sprint plan. At the end of the sprint, DevOps teams must deliver a "value" (like a worki...
Read more