Security is one of the process blades of Disciplined DevOps. The focus of the Security process blade is to describe how to protect your organization from both information/cyber/virtual threats and physical threats. This includes procedures for security governance, identity and access management, vulnerability management, security policy management, incident response, and vulnerability management. As you would expect these policies will affect your organization’s strategies around change management, disaster recovery and business continuity, solution delivery, data management, and vendor management amongst others. For security to be effective it has to be a fundamental aspect of your organizational culture.
We extend the DA mindset with philosophies specific to security.
Security Roles and Responsibilities
There are several roles that are pertinent to security.