DevOps - Transformation of Iron triangle to DevOps Triangle

DevOps has changed the traditional software development workflow and that has it's own effects. This definitely require people mindset change and changes in the traditional tools used so far. For new tools, capital investment required and to avoid that many companies are moving towards open source and inhouse tools. Security teams are still working in silos and have their own goals. This has put security on back seat in this entire flow and security always comes in the end of cycle. To overcome this challenge a new modified "step-by-step" approach is required. 

 
0 favorite thumb_down thumb_up 2 comments visibility_off  Remove from Watchlist visibility  Add to Watchlist
 

Outline/structure of the Session

Following topics would be covered briefly during next 20 min

  1. Transformation of Iron triangle to DevOps Triangle
  2. Why we need it?
  3. Challenges
  4. Security team responsibility
  5. Traditional security control
  6. Step-by-Step approach
  7. Embedding security into DevOps process

 

 

Learning Outcome

  1. Plan for security from the first phase
  2. Engage developers, Ops and security team
  3. Embed security into automatic build process

 

Target Audience

Practitioners, Managers, SM, PO, QA

schedule Submitted 2 years ago

Comments Subscribe to Comments

comment Comment on this Proposal
  • Shiv Sivaguru
    By Shiv Sivaguru  ~  2 years ago
    reply Reply

    Deepak,

    can you share the slides to understand what you will cover?

    It is just a concept that you are proposing or will you be sharing some experience with data?

    When you mention building in security into the build process, what about earlier stages of the life cycle?

     

    • Deepak Relan
      By Deepak Relan  ~  2 years ago
      reply Reply

      Hi Sivaguru,

      Security should be planned, developed, built, tested and monitored as a part of DevOps and this should be included right from continuous planning to continuous monitoring.

      I have a draft version of slides ready with me, do let me know your how to share it with you?

      Br,

      -Deepak