{"id":5512,"date":"2023-03-28T10:00:55","date_gmt":"2023-03-28T10:00:55","guid":{"rendered":"https:\/\/www.cloudmetrik.com\/?p=5512"},"modified":"2023-03-23T13:39:43","modified_gmt":"2023-03-23T13:39:43","slug":"the-devsecops-journey-step-by-step","status":"publish","type":"post","link":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/","title":{"rendered":"The DevSecOps Journey Step by Step"},"content":{"rendered":"<p>A culture of security unites employees on a common path to business stability and modernization.<\/p>\n<p>Organizations that are migrating to the cloud as a step toward modernizing must adopt an entirely new mindset around security and start to better leverage modern technologies and operational models, such as DevOps.<\/p>\n<p>DevOps\u2014bringing together formerly siloed development and operations teams\u2014is a combination of cultural philosophies, practices, and tools that merges software development with information technology (IT) operations. DevOps enables companies to accelerate delivery of new application features and improved services to customers.<\/p>\n<p>DevSecOps integrates security processes into the DevOps model. With DevSecOps, businesses can rapidly deliver secure and compliant application changes while running operations consistently with automation. This starts with developing operating tenets they can apply when shaping their vision for security as their business evolves.<\/p>\n<h3>Start the DevSecOps journey with this step-by-step guide.<\/h3>\n<h4>1. Undergo threat modeling<\/h4>\n<p>Define any threat vectors:<\/p>\n<ul>\n<li>What will move to the cloud in the next 18 months?<\/li>\n<li>How many points of entry are there?<\/li>\n<li>How does the business secure data in transit and data at rest?<\/li>\n<\/ul>\n<p>Outcome:<\/p>\n<p>An established point-in-time state of the state. It\u2019s important to note that the business will continually add variables during the transformation.<\/p>\n<h4>2. Upskill, enable, and empower all teams<\/h4>\n<p>Having an excellent security posture means having teams that are constantly on top of all threats across the infrastructure with a focus on continuing education. Security is a constantly moving target and a shared responsibility among all teams: developer, operations, security, and non-IT.<\/p>\n<p>Outcome:<\/p>\n<p>A detailed plan to upskill teams and shape the culture around collaboration to meet the organization\u2019s ever-changing security needs.<\/p>\n<h4>3. Implement a continuous security feedback loop across all stages of the delivery lifecycle<\/h4>\n<p>Establish and evangelize best practices around security coding standards, integrated security testing models for all pipelines, application security testing (AST), and vulnerability management.<\/p>\n<p>Outcome:<\/p>\n<p>Issue identification during code development and feedback loops, which helps accelerate remediation and reduce costs.<\/p>\n<h4>4. Establish policies and governance<\/h4>\n<p>It\u2019s critical to ensure the business follows their policy and governance guardrails. Automate security policies to notify and remediate any violations or abnormalities.<\/p>\n<p>Outcome<\/p>\n<p>Well-defined policy, governance, and automated remediation across the infrastructure and applications.<\/p>\n<h4>5. Gamify security and make it fun!<\/h4>\n<p>Consider implementing bug bounties for development, operations, and security teams. It\u2019s a fun way to drive education and collaboration and to incentivize a security mindset\u2014and help meet education and upskilling goals.<\/p>\n<p>Outcome:<\/p>\n<p>An engaged, always-on security focus with an element of fun.<\/p>\n<p>Want to start the DevSecOps journey, but you think it\u2019s too much for your IT team? Our certified and experienced team is ready to help you. <a href=\"https:\/\/www.cloudmetrik.com\/tr\/contact\/\">Contact us!\u00a0<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>A culture of security unites employees on a common path  [&#8230;]<\/p>","protected":false},"author":4,"featured_media":5514,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[126],"tags":[],"class_list":["post-5512","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cloud-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>The DevSecOps Journey Step by Step<\/title>\n<meta name=\"description\" content=\"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/\" \/>\n<meta property=\"og:locale\" content=\"tr_TR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The DevSecOps Journey Step by Step\" \/>\n<meta property=\"og:description\" content=\"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/\" \/>\n<meta property=\"og:site_name\" content=\"CloudMetrik\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-28T10:00:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Munevver Sahin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Yazan:\" \/>\n\t<meta name=\"twitter:data1\" content=\"Munevver Sahin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tahmini okuma s\u00fcresi\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 dakika\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/\"},\"author\":{\"name\":\"Munevver Sahin\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#\\\/schema\\\/person\\\/61fb277fd7d0442b21be5ff8c063b80e\"},\"headline\":\"The DevSecOps Journey Step by Step\",\"datePublished\":\"2023-03-28T10:00:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/\"},\"wordCount\":448,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/DevSecOps..jpg\",\"articleSection\":[\"Cloud Security\"],\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/\",\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/\",\"name\":\"The DevSecOps Journey Step by Step\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/DevSecOps..jpg\",\"datePublished\":\"2023-03-28T10:00:55+00:00\",\"description\":\"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#breadcrumb\"},\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/DevSecOps..jpg\",\"contentUrl\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/DevSecOps..jpg\",\"width\":1200,\"height\":800,\"caption\":\"DevSecOps\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/the-devsecops-journey-step-by-step\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.cloudmetrik.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The DevSecOps Journey Step by Step\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#website\",\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/\",\"name\":\"CloudMetrik\",\"description\":\"modernize, optimize and transform your cloud with AWS, Huawei Cloud, GCP and Azure Consultation\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.cloudmetrik.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"tr\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#organization\",\"name\":\"CloudMetrik Cloud Consultancy and Training Services\",\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/cloudmetriklogo_turuncumavi.png\",\"contentUrl\":\"https:\\\/\\\/www.cloudmetrik.com\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/cloudmetriklogo_turuncumavi.png\",\"width\":2480,\"height\":581,\"caption\":\"CloudMetrik Cloud Consultancy and Training Services\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/cloudmetrik\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.cloudmetrik.com\\\/#\\\/schema\\\/person\\\/61fb277fd7d0442b21be5ff8c063b80e\",\"name\":\"Munevver Sahin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g\",\"caption\":\"Munevver Sahin\"},\"url\":\"https:\\\/\\\/www.cloudmetrik.com\\\/tr\\\/author\\\/msahin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The DevSecOps Journey Step by Step","description":"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/","og_locale":"tr_TR","og_type":"article","og_title":"The DevSecOps Journey Step by Step","og_description":"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.","og_url":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/","og_site_name":"CloudMetrik","article_published_time":"2023-03-28T10:00:55+00:00","og_image":[{"width":1200,"height":800,"url":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg","type":"image\/jpeg"}],"author":"Munevver Sahin","twitter_card":"summary_large_image","twitter_misc":{"Yazan:":"Munevver Sahin","Tahmini okuma s\u00fcresi":"2 dakika"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#article","isPartOf":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/"},"author":{"name":"Munevver Sahin","@id":"https:\/\/www.cloudmetrik.com\/#\/schema\/person\/61fb277fd7d0442b21be5ff8c063b80e"},"headline":"The DevSecOps Journey Step by Step","datePublished":"2023-03-28T10:00:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/"},"wordCount":448,"commentCount":0,"publisher":{"@id":"https:\/\/www.cloudmetrik.com\/#organization"},"image":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#primaryimage"},"thumbnailUrl":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg","articleSection":["Cloud Security"],"inLanguage":"tr","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/","url":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/","name":"The DevSecOps Journey Step by Step","isPartOf":{"@id":"https:\/\/www.cloudmetrik.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#primaryimage"},"image":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#primaryimage"},"thumbnailUrl":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg","datePublished":"2023-03-28T10:00:55+00:00","description":"DevSecOps integrates security processes into the DevOps model. Start the DevSecOps journey with this step-by-step guide.","breadcrumb":{"@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#breadcrumb"},"inLanguage":"tr","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/"]}]},{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#primaryimage","url":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg","contentUrl":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2023\/03\/DevSecOps..jpg","width":1200,"height":800,"caption":"DevSecOps"},{"@type":"BreadcrumbList","@id":"https:\/\/www.cloudmetrik.com\/tr\/the-devsecops-journey-step-by-step\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.cloudmetrik.com\/"},{"@type":"ListItem","position":2,"name":"The DevSecOps Journey Step by Step"}]},{"@type":"WebSite","@id":"https:\/\/www.cloudmetrik.com\/#website","url":"https:\/\/www.cloudmetrik.com\/","name":"CloudMetrik","description":"modernize, optimize and transform your cloud with AWS, Huawei Cloud, GCP and Azure Consultation","publisher":{"@id":"https:\/\/www.cloudmetrik.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.cloudmetrik.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"tr"},{"@type":"Organization","@id":"https:\/\/www.cloudmetrik.com\/#organization","name":"CloudMetrik Cloud Consultancy and Training Services","url":"https:\/\/www.cloudmetrik.com\/","logo":{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/www.cloudmetrik.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2022\/01\/cloudmetriklogo_turuncumavi.png","contentUrl":"https:\/\/www.cloudmetrik.com\/wp-content\/uploads\/2022\/01\/cloudmetriklogo_turuncumavi.png","width":2480,"height":581,"caption":"CloudMetrik Cloud Consultancy and Training Services"},"image":{"@id":"https:\/\/www.cloudmetrik.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/cloudmetrik\/"]},{"@type":"Person","@id":"https:\/\/www.cloudmetrik.com\/#\/schema\/person\/61fb277fd7d0442b21be5ff8c063b80e","name":"Munevver Sahin","image":{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/secure.gravatar.com\/avatar\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/db47daba7f7aca4952aa1b2b880b919483d8bc9b93ff70676fe5f06678df509a?s=96&d=mm&r=g","caption":"Munevver Sahin"},"url":"https:\/\/www.cloudmetrik.com\/tr\/author\/msahin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/posts\/5512","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/comments?post=5512"}],"version-history":[{"count":0,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/posts\/5512\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/media\/5514"}],"wp:attachment":[{"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/media?parent=5512"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/categories?post=5512"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudmetrik.com\/tr\/wp-json\/wp\/v2\/tags?post=5512"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}