Injecting the “Sec” Into DevSecOps
mike d. kail
21

Nice read, although this step — Penetration Testing and Application+Code Vulnerability scanning are delivered through an automation and orchestration platform that can be scheduled according to a company’s given software deployment cycle — as indicated, usually takes a lot of time, effort and money to get it right. Its nice to be able to automate it but given the landscape of so many technologies being used independently , it is not very straightforward to achieve this step.

Hopefully there will be some sort of plug and play soon with this.

One clap, two clap, three clap, forty?

By clapping more or less, you can signal to us which stories really stand out.