An Integrated Framework for DevSecOps Adoption |
||
|
|
|
© 2022 by IJCTT Journal | ||
Volume-70 Issue-6 |
||
Year of Publication : 2022 | ||
Authors : Akanksha Gupta | ||
DOI : 10.14445/22312803/IJCTT-V70I6P102 |
How to Cite?
Akanksha Gupta, "An Integrated Framework for DevSecOps Adoption," International Journal of Computer Trends and Technology, vol. 70, no. 6, pp. 19-23, 2022. Crossref, https://doi.org/10.14445/22312803/IJCTT-V70I6P102
Abstract
Introduction of DevOps into the software development life cycle represents a cultural shift in the IT culture, amalgamating development and operations to improve delivery speed in a rapid and maintainable manner. At the same time, security threats and breaches are expected to grow as more enterprises move to new agile frameworks for rapid product delivery. Meanwhile, DevSecOps is a mindset change that revolutionizes software development by embedding security at each step of the software cycle, leading to resilient software. This paper discusses a framework organization can use to embed DevSecOps swiftly and efficiently into the general IT culture.
Keywords
Agile framework, Continuous Deployment, DevOps, Mean time to Acknowledge (MTTA), Mean time to Resolution(MTTR.
Reference
[1] The Gartner website, (2021). [Online]. Available: https://www.gartner.com/en/newsroom/press-releases/2021-12-2-gartner-predicts-30--of-critical-infrastructure-organi
[2] The Gartner website, (2019). [Online]. Available: https://www.gartner.com/smarterwithgartner/the-secret-to-devops-success
[3] The TechBeacons website, (2022). [Online]. Available: https://techbeacon.com/app-dev-testing/6-career-ideas-software-qa-professionals
[4] The CSO Online website, (2020). [Online]. Available: https://www.csoonline.com/article/3245748/what-is-devsecops-developing-more-secure-applications.html
[5] The Forrester website, (2022). [Online]. Available: https://www.forrester.com/blogs/what-cobra-kai-can-teach-us-about-devsecops/
[6] The Gartner website, (2019). [Online]. Available: https://www.gartner.com/smarterwithgartner/the-science-of-devops-decoded
[7] The GuideHouse website, (2022). [Online]. Available: https://guidehouse.com/-/media/www/site/insights/advanced-solutions/2022/gh-254-ps-devsecops-cultural-shift.pdf
[8] The DevSecOps website, (2022). [Online]. Available: https://www.devsecops.org/
[9] The IBM website, (2020). [Online]. Available: https://www.ibm.com/cloud/learn/devsecops
[10] Tech at GSA Website, (2022). [Online]. Available: https://tech.gsa.gov/guides/understanding_differences_agile_devsecops/
[11] The Deloitte website, (2022). [Online]. Available: https://www2.deloitte.com/us/en/pages/technology/solutions/secure-devops-services.html
[12] The DynaTrace website, (2021). [Online]. Available: https://www.dynatrace.com/news/blog/what-is-devsecops/
[13] The VMWare website, (2022). [Online]. Available: https://tanzu.vmware.com/devsecops
[14] The Pala Alto website, (2022). [Online]. Available: https://www.paloaltonetworks.com/cyberpedia/what-is-devsecops
[15] The Atlassian website, (2022). [Online]. Available: https://www.atlassian.com/devops/devops-tools/devsecops-tools
[16] The Microsoft website, (2022). [Online]. Available: https://azure.microsoft.com/en-us/solutions/devsecops/
[17] The Plutora website, (2022). [Online]. Available: https://www.plutora.com/blog/devsecops-guide
[18] The Trellix website, (2022). [Online]. Available: https://www.trellix.com/en-us/security-awareness/operations/what-is-devsecops.html
[19] The Illumio website, (2022). [Online]. Available: https://www.illumio.com/cybersecurity-101/devsecops
[20] The CloudDefense website, (2021). [Online]. Available: https://www.clouddefense.ai/blog/devops-vs-devsecops-the-differences
[21] The DevOps website, (2022). [Online]. Available: https://devops.com/devsecops-will-cross-the-chasm-in-2022
[22] The OWASP website, (2022). [Online]. Available: https://owasp.org/www-project-devsecops-maturity-model/
[23] The Synopsys website, (2022). [Online]. Available: https://www.synopsys.com/glossary/what-is-devsecops.html
[24] The Carnegie Mellon University website, (2022). [Online]. Available: https://www.sei.cmu.edu/our-work/devsecops/
[25] The PagerDuty website, (2022). [Online]. Available: https://devsecops.pagerduty.com/
[26] The AWS website, (2020). [Online]. Available: https://aws.amazon.com/blogs/security/automated-response-and-remediation-with-aws-security-hub/
[27] The CrowdStrike website, (2022). [Online]. Available: https://www.crowdstrike.com/cybersecurity-101/what-is-devsecops/