This blog post is an excerpt from our new report, Integrating Security From End to End With DevSecOps, download the full version here.
At its core, DevSecOps is “a cultural and engineering practice that breaks down barriers and opens collaboration between development, security and operations organizations using automation,” according to the General Services Administration’s definition. The focus is on rapid, frequent delivery of secure infrastructure and software to production, which a growing number of agencies are prioritizing.
The purpose and intent of DevSecOps is to build on the mindset that everyone is responsible for security with the goal of safely distributing security decisions at speed and scale.
“Something that helped the adoption of DevSecOps was to increase collaboration to create an environment of sharing.”
– Darryl Peek, Director of Digital, Innovation and Solutions, Department of Homeland Security
These stats will help illustrate the growth of DevSecOps and set the context for why this practice is more important than ever for governments at all levels.
30 times faster
Today’s high-performing IT teams using DevOps practices deploy code up to 30 times faster, experience 60% fewer failures and recover from development issues 168 times faster than their peers, according to a recent report.
338% more
Mature DevOps practices are 338% more likely to integrate automated security, according to the 2018 DevSecOps Community Survey.
75% of CIOs
In the 2017 Federal CIO Survey, 75% of CIOs identified DevOps as a top priority.
48% of developers
Developers said they understand the importance of security though 48% reported they don’t have enough time to spend on it, according to the 2018 DevSecOps Community Survey.
73% of organizations
Out of 73% of organizations surveyed in the 2018 DevSecOps Survey, 33% suffered verified breaches stemming from vulnerabilities in open source components or web applications within the last 12 months. These and other high-profile breaches led 73% of respondents to affirm an increased interest in DevSecOps practices, including increased investment and implementation.
56% with a mature DevOps practice
While 56% of respondents with a mature DevOps practice rated container and application security tools as critical to their organizations in the 2018 DevSecOps Survey.
$5.9 billion growth
The DevSecOps market is expected to expand at a compound annual growth rate of 31.2% from $1.5 billion in 2018 to $5.9 billion in 2023.
To learn more about how leading governments are working to integrate security into their DevOps practices and culture, download our full report here