8.6 Secure Software Development and DevSecOps
We have now covered computer security, so let’s situate it in the frame of systems development. When do we check to make sure all the appropriate computer security countermeasures are put into place? The answer is, during DevSecOps iterations. Where the ISML cuts across the life cycle of implementations of systems (and systems of systems), DevSecOps is concentrated on remediation of vulnerabilities and the implementation of countermeasures for computer security in software development, operations, and infrastructure provisioning. Earlier, we introduced DevSecOps as a method and set of processes. Here we will consider DevSecOps in light of what we have covered in this chapter on computer security ...
Get Information Security Management, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
