Introduction to DevSecOps

Before we start stalking about DevOps & DevSecOps, Let me take step back and look at the history of the software development lifecycle (SDLC) and see why industry is moving toward DevOps.

Going back, 30 years ago, waterfall methodology was the booming practice in the industry. Shockingly,  some companies are still using that. To me personally, they are way behind the game, they may have reasons why they don’t want to adopt to the new technology. Today, looking at the industry rapid changes, waterfall approach can’t work anymore, it is a dead. Any company that want to deploy faster, get quick feedback, changing the requirements constantly, and testing quicker, waterfall won’t simply work for them.

Moving forward, later on, agile approach was introduced to the industry. It is better than waterfall as it addressed many of the loop holes with waterfall SDLC. It improved on the speed of the project and the quick feedback cycle to the developers. The approach works in sprint fashion two to three weeks’ sprints. Overall, it is good but it is missing one major point which is the interaction with the operation teams. Development team and testing team are working together throughout these sprints and leaving the operation team aside.

It didn’t take that long till DevOps approach came to light to solve the missing challenge of the Agile approach. DevOps is the combination of cultural philosophies, practices, and tools, that increases an organization’s ability to deliver applications and serveries at high velocity (Per AWS definition). DevOps bring all teams together, Development, Testing/QA, and Operation teams to work together as one team. One team only can focus on one mission to deliver a successful project. With DevOps, no team should work in silo. Looking at the definition, it sounds easy and simple when you talk about it but the reality it isn’t. The reason it isn’t simple because it requires a major cultural change and in fact that is the main differentiator between agile and DevOps, agile is a development methodology whereas DevOps is complete cultural change that goes hand and hand with digital transformation for any company adopting to change. 

Lastly, I can’t talk about DevOps without mentioning the Phoenix Project, I highly recommend reading it. It is free and available online. You will understand the meaning of “Work”, if your work isn’t tied to the business goals, you need to take step back and rethink.