Full Text

I recently had the opportunity to attend and present at the Advanced Technology Academic Research Center (ATARC) Devops Summit last month. There was, as expected given the topic, a huge turn-out of US federal, commercial and public-sector participants looking to learn, connect and share lessons from adopting and implementing devops in their organizations.

A key moment at the summit conference was an informal survey of over 200 participants by Tom Suder, the President of ATARC. Tom pulsed the attendees by asking if security should be incorporated into the devops name.

The responses were interesting and thought provoking – some folks strongly agreed that security absolutely needed to be part of the evolution of devops. Other attendees equally strongly felt that devops is really a culture of using automation to drive change and should perhaps be folded into change management! There was much debate about what was devops and how it helps deliver faster by integrating and breaking down IT silos.

Secdevops or devsecops?

There are several variations, such as secdevops or devsecops, that have sprung up since the word devops started hitting mainstream awareness a few years ago. Cloud, devops and microservices cheerleaders like Adrian Cockcroft have demonstrated how organizations...