Speakers and exhibitors at last week’s RSA Conference outlined why DevSecOps need to be implemented throughout the software development cycle.
As Amazon Web Services Senior Manager Steve Andrews blogged in July, “Leaving security out of DevOps is asking for trouble.” It was evident at the recent RSA Conference in San Francisco that increasing numbers of IT and development managers are coming around to Andrews’ way of thinking.
The rapid rise of a security-aware version of DevOps, called DevSecOps by many (and SecDevOps by others), seemed to be gaining steam at the conference, with numerous sessions and product announcements devoted to the topic. Conference organizers even designated March 3 as “DevSecOps Day at RSA,” devoting an entire day’s worth of sessions and speakers to the integration of security into the DevOps framework.
