Ciência-IUL
Publications
Publication Detailed Description
Journal Title
International Journal of Information Security
Year (definitive publication)
2025
Language
English
Country
United Kingdom
More Information
Web of Science®
Scopus
Google Scholar
Abstract
Nowadays, software development happens at a fast pace. At the same time, Information Technology organizations face higher demands and competition while struggling with external threats such as cyberattacks. Therefore, many organizations adopt DevOps as a working culture to improve their Software Development Lifecycle (SDL). However, the success of DevOps adoption remains inconsistent, and recently, IEEE introduced a DevOps standard that might help improve DevOps adoption. The standard mentions DevSecOps as the security aspect of DevOps, adding security practices to the SDL from inception, but what are these practices or capabilities? Which tools can be used to implement these practices? Therefore, a Multivocal Literature Review was performed to identify DevSecOps practices and their definitions, and which tools can be used to implement them.
Acknowledgements
--
Keywords
DevSecOps,SecDevOps,Practices,Capabilities,Secure software development,Security tools
Fields of Science and Technology Classification
- Computer and Information Sciences - Natural Sciences
- Civil Engineering - Engineering and Technology