SANS: Extending DevSecOps Security Controls into the Cloud

In previous years, SANS research has examined how security and risk management leaders are leveraging modern technologies, such as infrastructure as code, containerization and security automation, to manage security in fast-paced Agile and DevOps environments. This year’s survey will continue to explore how organizations are extending their DevSecOps security controls beyond their on-premises environments into the public cloud to secure their cloud networks, services, and applications. 

By taking part in this survey you will be among the first to receive the full report with all anonymized, aggregated results (as soon as the report becomes available) and have a chance to learn more about:

  • How the cloud helps organizations move faster
  • Whether organizations are putting their emphasis more on the left (“Dev”) or the right (“Ops”) of “DevSecOps” as implemented in the cloud
  • How infosec can take advantage of DevOps feedback loops and experiments to continuously assess, learn and improve the security of systems
  • How cloud continuous integration, continuous delivery, and configuration management tools are being used compared to on-prem options.

Take the survey