As a security practitioner, the trend of Agile and DevSecOps is coming. Whether
developers or management are pushing for it, you should be prepared. DevSecOps
sets security as a metric of success for developers and encourages security to
be a consideration continually through a project lifecycle. This is a vast
improvement to the usual methods of taking security into consideration only at
the end, in the beginning, or avoiding talking to security at all. You should
be seizing the opportunity to leverage the movement to your advantage. I want
to arm you with ideas on education, resources, tools, and practices to do
DevSecOps well from a Security department standpoint.
Nicole Schwartz (@CircuitSwan) is a Product Manager for the GitLab Secure team. In her career, she has been in Product, System Administration, and Agile coaching. Before her career ever started...