July 2018
Intermediate to advanced
356 pages
9h 18m
English
Content preview from Hands-On Security in DevOps
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Security resource pool
The key advantage to keeping security members within one dedicated security team is to allow security knowledge sharing across projects and be able to deliver tools or best practices for the whole organization. However, for security practices to bake into DevOps practices requires a certain level of involvement for DevOps and security teams. Therefore, the CTO lists the all-year project plan for the CSO as a reference to plan the security team's involvement with projects. The CSO allocates security members to participate in different projects. The security members dot line report to the project manager during the period of a project assignment. It works for a while but there are some issues under this kind of organization ...