A DevSecOps Maturity Model for Secure Software Development by Gartner®
Shifting to a DevSecOps culture is key for organisations aiming to balance developer experience with business goals
To help make this shift, Gartner published a comprehensive report featuring a formal DevSecOps maturity model. This model is organised into five distinct dimensions, each addressing a key domain within DevSecOps:
- Security Skills and Knowledge.
- Developer Enablement.
- Secure Design and Threat Assessment.
- Automated Security Practices.
- Software Supply Chain Security.
The Gartner report also offers guidance on establishing and managing a DevSecOps community and introduces the concept of a DevSecOps enabling team – both of which we believe to be essential for a successful transition.
Gartner, DevSecOps Maturity Model for Secure Software Development, Aaron Lord, Manjunath Bhat, Aaron Harrison, 29 August 2024
GARTNER is a registered trademark and service mark of Gartner, Inc. And/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.