D
FEATURE
DevSecOps is an abbreviated term
for Development Security Operations
and is involved in integrating security
within the DevOps process. DevSecOps
forces people to consider security
while carrying out development
operations. There are many benefits to
using this type of approach and Tim
Mackey, Senior Principal Consultant
at the Synopsys CyRC (Cybersecurity
Research Centre); and Bharat Mistry,
Principal Security Strategist at Trend
Micro, are here to tell us more.
TIM
TIM MACKEY,
MACKEY, SENIOR
SENIOR PRINCIPAL
PRINCIPAL
CONSULTANT
CONSULTANT AT
AT THE
THE SYNOPSYS
SYNOPSYS
CYRC
CYRC (CYBERSECURITY
(CYBERSECURITY
RESEARCH
RESEARCH CENTRE)
CENTRE)
What is the historic relationship
between DevOps and security?
DevOps is an attempt to bring attributes
of Total Quality Management and Six
Sigma into the software world. Key to
its success is the philosophy that new
features should be small and that anyone
viewing a quality issue has the authority
to stop production.
It’s often viewed as bridging the gap
between those producing the software
and those deploying it; with feedback
along the way. This approach allows for
agile development where rather than wait
for a periodic major release, development
teams embracing release their features
as they are finished. This approach of
smaller features delivered more frequently
allows not only for higher quality output,
www.intelligentciso.com
|
Issue 22
37