Intrust Expert Discusses the Latest in DevSecOps

Developers and Security

Companies that develop software but don’t bake security in during development do so at their own peril, says Intrust’s Dave Hatter in a recent TechTarget article. Moving from DevOps to DevSecOps is going to require fundamental shifts in both thinking and operations. Some finesse is required to help developers and security practitioners work well together, Hatter said.

“As an application developer, I usually saw the security team as a giant impediment slowing me down, reducing my productivity and coming up with, what seemed to me at the time, ridiculous controls,” Hatter said in the article.

DevSecOps Struggle Is Real

The article points to challenges DevSecOps face, including collaboration, role definition and the lack of skilled workers in this field.

But, Hatter is optimistic. “There is enormous opportunity here to see huge productivity gains, as well as massive improvements in the security and quality of code,” he said.

In the DevSecOps model, security practitioners are involved from the design stage onward. This is as opposed to trying to make an application secure after its functionality is set. Proponents feel this leads to safer software across the board because continuous testing and improvement counterbalance emerging threats.

However, a DevSecOps shop is rarely built in a day. A recent survey by Enterprise Strategy Group found that, while 55% of IT and cybersecurity professionals said they have incorporated some degree of security into DevOps workflows. But, just 33% reported involving security teams from a new project’s inception.

To execute a successful, meaningful shift to DevSecOps, security leaders and practitioners must consider culture, processes, tools and skill sets.

At Intrust-IT, our custom IT projects offerings include IT consulting on questions like when to bring in cyber security and planning in your product development.

Posted in
Intrust IT Intrustimonials

Intrust Man

Intrust Man may be small, but he is mighty smart. You can trust this clever cartoon hero to provide news you can use.

Share this Blog

Enterprise Password Management Promo Wide

Is Your Name or Birthday a Part of Your Password?

If so, you’re a part of the 59 percent of people who don’t follow proper password hygiene. More than 70 percent of passwords are used for more than one system, meaning if cybercriminals crack one, they can access a lot more accounts.

Our free Enterprise Password Management Guide will give you the best password hygiene practices to help you secure your computer and your business.

Download the Guide

Explore the Latest Trends in IT

Cybersecurity for Small Businesses Threat Management Strategies - Intrust IT

Cybersecurity for Small Businesses: Threat Management Strategies

The threat of cybercrime looms larger than ever before. With each passing year, we witness a staggering rise in cyberattacks,...
The Crucial Role of Data Backup in Business Continuity and Disaster Recovery - Intrust IT

The Crucial Role of Data Backup in Business Continuity and Disaster Recovery

Data is the lifeblood of any modern business operation. All organizations rely heavily on digital information, from customer and financial...
What is Two Factor Authentication, and Why Does it Matter - Intrust IT

What Is Two Factor Authentication, and Why Does It Matter?

You’ve likely seen security updates on your phone or computer asking you to set up 2FA or MFA to increase...
Should Information Technology Companies Allow Workers 9 Days AFK - Intrust IT

Should Information Technology Companies Allow Workers 9 Days AFK?

At Intrust IT, we know how powerful stepping away from work can be for our employees’ well-being. We became employee-owned...
The Advantages of Opting for a Managed SOC - Intrust IT

Benefits of Continuous Cybersecurity Monitoring with a Managed Security Operations Center (SOC)

Introduction: The Importance of Robust Cybersecurity in Today's Digital Age As a leading managed service provider, we’ve seen cyber threats...
Local Government Security Breaches Are City Managers Prepared - Intrust IT

Local Government Security Breaches: Are City Officials Prepared?

Virtually every day there’s a new headline about novel cyber threats, government security breaches and municipal government cyber attacks that...