AMA: DevSecOps versus Secure SDLC

shehackspurple profile image Tanya Janca Updated on ・1 min read

In a recent 'Ask Me Anything' live stream, Tanya Janca of We Hack Purple discusses 'DevSecOps versus Secure SDLC'. This video is approximately 2.5 minutes.

  • DevSecOps is you as an AppSec professional, doing your job, in a DevOps environment.
  • A secure SDLC is when you add security activities to your system development lifecycle. Preferably in every phase of the SDLC, and formalized (devs cannot avoid it).
  • Examples of secure SDLC -Threat modelling during design -Adding security requirements & review during requirements gathering -Reviewing your design for security flaws and to ensure secure deign concepts are applied

Then Tanya gets off topic and talks about We Hack Purple.

If you want to continue to develop your skills, check out WeHackPurple Academy’s NEW course, Application Security Foundations taught by yours truly! There is also a lot of awesome content to subscribe to for only 7$ a month!


Editor guide
gadinaor profile image
Gadi Naor

The title !!!! and the observations on the differences between the two topics - really liked it.

You might find useful these kubernetes tools

shehackspurple profile image
Tanya Janca Author

Thank you! :-D