As a security practitioner, the trend of Agile and DevSecOps is coming. Whether developers or management are pushing for it, you should be prepared. DevSecOps sets security as a metric of success for developers and encourages security to be a consideration continually through a project lifecycle. This is a vast improvement to the usual methods of taking security into consideration only at the end, in the beginning, or avoiding talking to security at all. You should be seizing the opportunity to leverage the popular DevSecOps movement to your advantage.I want to arm you with ideas on education, resources, tools, and practices to do DevSecOps well from a Security department standpoint.
Nicole Schwartz (@CircuitSwan was AmazonV) is a Product Manager for the GitLab Secure team. In her career, she has been in Product, System Administration, and Agile coaching. Before her career ever started she was a Hacker. When she isn’t working she attends conventions (you may have known her as @CircuitSwan was AmazonV) and volunteers at events such as the Diana Initiative.