WHAT IS DEVOPS SECURITY?
DevOps security refers to the practice of safeguarding an organization’s entire development/operations environment through the use of coordinated policies, processes, and technology. DevOps gives information security (infosec) groups the opportunity to integrate security earlier in the software development process, building best practices into all parts of the DevOps lifecycle. From inception, design, build, test, release, support, maintenance, and beyond, DevOps teams can use DevOps security tools such as automated security monitoring and automated pen testing to deliver security-as-code that:
- Empowers developers to proactively solve security problems
- Makes application security elastic
- Automates security into the pipeline
- Monitors attacks the same way performance is monitored