Secure DevOps, DevSecOps, and “shifting left” have become increasingly popular terms in cybersecurity. With the rapid increase both in volume and speed to delivery of applications, attacks on applications have also increased in both volume and complexity. Combine this with the shortage of cybersecurity professionals and lacking security skillsets, cybersecurity teams are already stretched to their limits. This has given rise to a DevSecOps approach, however, DevSecOps isn’t a silver bullet, organisations still face misconfigurations and other security challenges, struggle with implementing the DevSecOps approach, and insufficient security skillsets.
There are clear indications that organisations are moving toward a DevSecOps approach. The first indication is the increase in the variety of cloud workloads, including containers and serverless, that is expected over the next year. The increased use of these types of workloads indicates that there is a trend toward DevSecOps.