Back to Resources

5 tips for getting started with DevSecOps


group of developers gathering information through their computer. Users can click to get started with devsecops


Eric Johnson, Principal Security Engineer, weighs in on where to start adding security into DevSecOps in the CSO article by Scot Finnie.

Don’t be fooled, integrating security into the DevOps process is a big project. But the payoff is worth the effort. Here’s what you need to know to get started building DevSecOps from the ground up.

  • Registration is required on CSO to to view this full article, but there are plenty of takeaways on getting started with DevSecOps

  • Eric Johnson, Principal Security Engineer, weighs in on where to start adding security into DevSecOps

  • “The biggest cultural challenge to DevSecOps” said Eric Johnson, application and security curriculum manager at SANS Institute, is letting go the “culture of no” in favor of “working together to solve problems, empower teams, fail fast and continuously improve.”