The terms DevSecOps refers to the marriage of Deveoploment, Security and Operations teams using automation to bridge them together.
Traditionally, each team did their own work and there was always an issue with bridging their activities together.
For example, dev team would build their code and create an app zip file to deploy to prod… then operations would need to know where that zip file was and how to install it. If devs added a new feature which needed a change to the install, they might forget and next install would fail.
With DevSecOps, those issues are eliminated because everything is defined the same for deployments in dev or prod.
For example, we change to docker builds with helm charts and deploy to kubernetes environments – as one very common option.
Standardizing on processes allows automation all the way to prod.
Including security too by eliminating the need for devs and sysadmins to know passwords for example.
Contact Jean-Serge Gagnon via email at js@jsgagnonservices.com for more details.
Leave a Reply