DevSecOps · Flashcard

What is DevSecOps?

  • AAn organizational culture and practice that unifies software development, security, and operations
  • BA security scanning tool that checks application code for vulnerabilities before each release
  • CA dedicated security team that reviews the software after the operations team has deployed it
  • DA compliance framework that certifies software as secure once its development is fully complete

Why this is the answer

DevSecOps is an organizational culture and practice unifying Dev, Sec, and Ops — the DoD calls it the industry best practice for rapid, secure delivery. It is not a single scanning tool, not a separate team acting after deployment, and not an end-of-cycle compliance certification.

Official docs
Study in Gnoseed →