Secure, Resilient, and Agile Software Development by Mark Merkow

In Chapters 4 through 9, we examined how agility can be used to transform the Scrum process into a secure software development lifecycle (SDLC) using strate gies such as shift left and build security in. This transformation is extensible into the deployment and operations side of the software environment as well.

In Chapter 2, we introduced the concept of DevSecOps as an implementation of these principles and strategies. In Chapter 10, we’ll dig deeper into DevSecOps and find ways to help apply these activities into your own secure SDLC and to measure the maturity of your practices.