DevSecOps describes the culture and practices that enable organizations to bridge the gap between their developers, security teams, and operations teams. Through effective DevSecOps, you can improve processes through collaborative and agile workflows, drive for faster and more secure software delivery via technology, and achieve consistent governance and control.
There is no uniform DevSecOps practice. Each organization needs to tailor its culture and its DevSecOps practices to its own unique processes, products, security requirements, and operational procedures.
Just as there is no uniform DevSecOps practice, there is no uniform method of the Assessment & Authorization of this practice. Arlo can assist your organization in obtaining continuous Authorization to Operate (cATO) by providing the resources and guides to assess and document the key components of achieving cATO:
- Teams that create, build, test, secure and operate the software product using the authorized platform and DevSecOps process
- Process for producing, testing, securing and operating the software product
- Platform being used to build, test, secure, and operate the software product, including various platform layers