Andrew Clark

If You Aren’t Automating Testing, You Aren’t Doing DevSecOps

October 17, 2022 Andrew Clark

If you are going to automate application development and operations like a hyperscaler, it is not as simple as moving code to a Git repository and then you are done. Security is critical to DevOps – so much that people are now calling it DevSecOps to highlight that fact. The “Sec” in DevSecOps impacts several phases in the development lifecycle – from code quality and security checking to developer-side unit tests and, further downstream, functional regression tests. Provided they are automated, each technique brings major savings in development by “shifting defects left.” In this article, we’ll explore how.

Today, …