Dos and Don'ts of DevSecOps

Posted on in Presentations

DevSecOps is a very loaded term and it includes many topics. Despite what some will lead you to believe, DevSecOps is not just an integration of security testing tools. Nor is it merely a focus on achieving security quality attributes on CI and CD. DevSecOps is beyond the automatizing security testing and there are common misconceptions and roadblocks on how you can establish it successfully.

Learning Objectives:
1: Identify key principles of DevSecOps and see how it relates to DevOps principles.
2: Analyze common pitfalls and see where integration security takes part in DevSecOps.
3: Demonstrate how to do “Continuous Security” by using a lifecycle approach.

Hasan Yasar


Technical Director, SSD Division at Software Engineering Institute, Carnegie Mellon University

Application Security & DevOps

secure coding security architecture security awareness security operations DevSecOps



Share With Your Community