SlideShare a Scribd company logo

DevSecops: Defined, tools, characteristics, tools, frameworks, benefits and challenges

M
Mohamed Nizzad

The document discusses DevSecOps as an evolution of DevOps that integrates security into the software development lifecycle. It outlines characteristics, practices, and benefits, such as improved code quality and reliability. Additionally, it highlights various implementation models and the challenges of adopting DevSecOps in organizations.

Technology
Related topics:
Insights on Software Development agile-software-development Information Security Amazon Web Services
1 of 13
1
2
Most read
3
Most read
4
Most read
5
6
7
8
9
10
11
12
13
DevSecOps A.R.M. NIZZAD CTO | SENIOR LECTURER | RESEARCHER | SOFTWARE ENGINEER | DIGITAL MEDIA STRATEGIST | TECHNICAL W RITER | FREELANCER
Outline DevOps DevSecOps Characteristics Practices Benefits Implementation Challenges
DevOps DevOps is a set of practices that works to automate and integrate the processes between software development and IT teams, so they can build, test, and release software faster and more reliably
DevSecOps DevSecOps is a further development of the DevOps concept that, besides automation, addresses the issues of code quality and reliability assurance.
DevSecOps Characteristics DevOps Culture Automation Measurement Sharing
DevSecOps Practices • Threat modeling and risk assessments • Continuous testing • Monitoring and logging • Security as code • Red-Team and security drills
Benefits of Implementing DevSecOpsSHIFTING SECURITY TO THE LEFT AUTOMATING SECURITY VALUE
Implementing DevSecOps Different Security implementation models have been proposed by researchers and experts in the field of Security with respect to DevSecOps. • Three pillars of a DevSecOps model • OWASP DevSecOps Maturity Model • Deloitte’s transformational pillars in DevSecOps
Three pillars of a DevSecOps model • Test-driven security • Monitoring and responding to attacks • Assessing risks and maturing security
OWASP DevSecOps Maturity Model LEVEL 1: BASIC UNDERSTANDING OF SECURITY PRACTICES LEVEL 2: ADOPTION OF BASIC SECURITY PRACTICES LEVEL 3: HIGH ADOPTION OF SECURITY PRACTICES LEVEL 4: ADVANCED DEPLOYMENT OF SECURITY PRACTICES AT SCALE
Deloitte’s transformational pillars in DevSecOps Governance People Technology Process
Challenges in implementing DevSecOpsKEEPING UP WITH DEVOPS ORGANIZATIONAL CHALLENGES TOOLS AND PRACTICES
DevOps is not a Goal, But a never-ending process of continual Improvement Thank you

More Related Content

PDF
DevSecOps Implementation Journey
DevOps Indonesia
 
PDF
The State of DevSecOps
DevOps Indonesia
 
PPTX
DevSecOps : an Introduction
Prashanth B. P.
 
PDF
DevSecOps and the CI/CD Pipeline
James Wickett
 
PPTX
Benefits of DevSecOps
Finto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS
 
PPTX
Introduction to DevSecOps
abhimanyubhogwan
 
PDF
DevSecOps What Why and How
NotSoSecure Global Services
 
PDF
Practical DevSecOps Course - Part 1
Mohammed A. Imran
 
DevSecOps Implementation Journey
DevOps Indonesia
 
The State of DevSecOps
DevOps Indonesia
 
DevSecOps : an Introduction
Prashanth B. P.
 
DevSecOps and the CI/CD Pipeline
James Wickett
 
Benefits of DevSecOps
Finto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS
 
Introduction to DevSecOps
abhimanyubhogwan
 
DevSecOps What Why and How
NotSoSecure Global Services
 
Practical DevSecOps Course - Part 1
Mohammed A. Imran
 

What's hot (20)

PDF
DevSecOps: What Why and How : Blackhat 2019
NotSoSecure Global Services
 
PPTX
DevOps to DevSecOps Journey..
Siddharth Joshi
 
PDF
2019 DevSecOps Reference Architectures
Sonatype
 
PDF
Demystifying DevSecOps
Archana Joshi
 
PPTX
DevSecOps
Cheah Eng Soon
 
PDF
DevSecOps The Evolution of DevOps
Michael Man
 
PPTX
DEVSECOPS: Coding DevSecOps journey
Jason Suttie
 
PDF
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
PDF
DevSecOps in Baby Steps
Priyanka Aash
 
PDF
[DevSecOps Live] DevSecOps: Challenges and Opportunities
Mohammed A. Imran
 
PDF
The What, Why, and How of DevSecOps
Cprime
 
PDF
DevSecOps | DevOps Sec
Rubal Jain
 
PPTX
DEVSECOPS.pptx
MohammadSaif904342
 
PDF
DevSecOps - The big picture
Stefan Streichsbier
 
PDF
Devops Devops Devops, at Froscon
Kris Buytaert
 
PPTX
DevSecOps reference architectures 2018
Sonatype
 
PDF
What is DevOps | DevOps Introduction | DevOps Training | DevOps Tutorial | Ed...
Edureka!
 
PPTX
DevOps Foundation
Homepree Rloy
 
PDF
Introduction to DevSecOps
Setu Parimi
 
PDF
DevSecOps: Taking a DevOps Approach to Security
Alert Logic
 
DevSecOps: What Why and How : Blackhat 2019
NotSoSecure Global Services
 
DevOps to DevSecOps Journey..
Siddharth Joshi
 
2019 DevSecOps Reference Architectures
Sonatype
 
Demystifying DevSecOps
Archana Joshi
 
DevSecOps
Cheah Eng Soon
 
DevSecOps The Evolution of DevOps
Michael Man
 
DEVSECOPS: Coding DevSecOps journey
Jason Suttie
 
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
DevSecOps in Baby Steps
Priyanka Aash
 
[DevSecOps Live] DevSecOps: Challenges and Opportunities
Mohammed A. Imran
 
The What, Why, and How of DevSecOps
Cprime
 
DevSecOps | DevOps Sec
Rubal Jain
 
DEVSECOPS.pptx
MohammadSaif904342
 
DevSecOps - The big picture
Stefan Streichsbier
 
Devops Devops Devops, at Froscon
Kris Buytaert
 
DevSecOps reference architectures 2018
Sonatype
 
What is DevOps | DevOps Introduction | DevOps Training | DevOps Tutorial | Ed...
Edureka!
 
DevOps Foundation
Homepree Rloy
 
Introduction to DevSecOps
Setu Parimi
 
DevSecOps: Taking a DevOps Approach to Security
Alert Logic
 
Ad

Similar to DevSecops: Defined, tools, characteristics, tools, frameworks, benefits and challenges (20)

PPTX
DevSecOps Training Bootcamp - A Practical DevSecOps Course
Tonex
 
PPTX
DevOps vs DevSecOps: How to Balance Speed and Security in Software Development
Dev Software
 
PDF
Continuous Security / DevSecOps- Why How and What
Marc Hornbeek
 
PPTX
DevSecOps IT Modernization Training Bootcamp for Security Staff, IT Leadership
Bryan Len
 
PDF
Complete DevSecOps handbook_ Key differences, tools, benefits & best practice...
mohitd6
 
PPTX
DevSecOps Best Practices-Safeguarding Your Digital Landscape
stevecooper930744
 
PPTX
Testing in DevOps world
Moataz Nabil
 
PDF
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Mohammed A. Imran
 
PDF
DevSecOps Implement Making Security Central to Your DevOps Pipeline
Enov8
 
PDF
DevSecOps - Background, Status and Future Challenges
dsc71656
 
PDF
Strengthen and Scale Security for a dollar or less
Mohammed A. Imran
 
PPTX
Dev secops indonesia-devsecops as a service-Amien Harisen
Nadira Bajrei
 
PPTX
Devops
penetration Tester
 
PPTX
Why You Should Implement DevSecOps Approach?
Enov8
 
PPTX
DevSecOps: Integrating Security Into Your SDLC
Dev Software
 
PPTX
DevOps Security: How to Secure Your Software Development and Delivery
Dev Software
 
PDF
Why You Should Implement DevSecOps Approach?
Enov8
 
PDF
Scale security for a dollar or less
Mohammed A. Imran
 
PDF
Understanding DevOps Security - Full Guide
Lency Korien
 
PDF
understanding devops security - DevSecOps
Anshulkichara3
 
DevSecOps Training Bootcamp - A Practical DevSecOps Course
Tonex
 
DevOps vs DevSecOps: How to Balance Speed and Security in Software Development
Dev Software
 
Continuous Security / DevSecOps- Why How and What
Marc Hornbeek
 
DevSecOps IT Modernization Training Bootcamp for Security Staff, IT Leadership
Bryan Len
 
Complete DevSecOps handbook_ Key differences, tools, benefits & best practice...
mohitd6
 
DevSecOps Best Practices-Safeguarding Your Digital Landscape
stevecooper930744
 
Testing in DevOps world
Moataz Nabil
 
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Mohammed A. Imran
 
DevSecOps Implement Making Security Central to Your DevOps Pipeline
Enov8
 
DevSecOps - Background, Status and Future Challenges
dsc71656
 
Strengthen and Scale Security for a dollar or less
Mohammed A. Imran
 
Dev secops indonesia-devsecops as a service-Amien Harisen
Nadira Bajrei
 
Devops
penetration Tester
 
Why You Should Implement DevSecOps Approach?
Enov8
 
DevSecOps: Integrating Security Into Your SDLC
Dev Software
 
DevOps Security: How to Secure Your Software Development and Delivery
Dev Software
 
Why You Should Implement DevSecOps Approach?
Enov8
 
Scale security for a dollar or less
Mohammed A. Imran
 
Understanding DevOps Security - Full Guide
Lency Korien
 
understanding devops security - DevSecOps
Anshulkichara3
 
Ad

Recently uploaded (20)

PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
A Presentation on Artificial Intelligence
memembruh336
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Teaching material agriculture food technology
LiaRayya
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Cloud computing and distributed systems.
kkkkkhan
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 

DevSecops: Defined, tools, characteristics, tools, frameworks, benefits and challenges