3. It's A new Purpose for an Institution
● It Defines the SDLC Today
● It Defines the Agility
● It Defines the Accessibility
4. DevOps Start with the People,Process and Tools
There is no Beginning and There is still a no end of the path for the Transition in
the DevOps Culture
9. Customer
Customer have a Requirement:
● I am Ready to use a Software
● I need a Reliable Source for the Security and the Development
● I need a support from your side
● I need a Agnostic Solution
● I need a Requirement analysis done
● I need a Product that makes my Institution stand out in Crowd
● I need a full support end to end
● I need a Customer support and the Hot Fixes When Required
When Can you
Deliver me the
Software and the
Product
10. Customer
Program Manager Product Owner
Architect
Program Manager Product Owner
Architect
Program Manager Product Owner
Architect
14. Developers
Scrum
Agile
DevOps
Tickets
Backlogs
Features
Code And the Version Control
● Let's Strategize the
Cost
● Let's Strategize for
the Bugs in the
Code
● Let's Strategize
making our life
easier
Customer Comes
with a New
Requirement every
time that we have a
call with Him
Strategize the
Release and the Time
for the New
Deployments
Market Research
what is Good and
what went bad and
also the new
Features based on
this research
Lets Zoom : This
Basically Learn more
about it
21. What are the massive 5 moves?
Source Build Test Deploy Monitor
Everything is Important and
Everything is at stake
22. What are the massive 5 moves?
Source Build Test Deploy Monitor
Everything is Important and
Everything is at stake for all reason
23. But it's time to shift left
Source Build Test Deploy Monitor
Everything is Now made to be Secure
Security
Rules
Study the :
● Logs
● Feeds
● Artifacts
● Environment
● SDLC and ALM
24. Time to Know what is at stake
Source Build Test Deploy Monitor
Everything is Important and
Everything is to be made more secure
Source Build Test Deploy
25. Now let’s define Security and Compliance
Security:
The discipline and practise of securing the whole DevOps environment through
strategies, rules, processes, and technology is known as DevOps security. Every
stage of the DevOps lifecycle, including conception, design, development, test,
release, support, maintenance, and beyond, should include security.
Compliance
DevOps really enhances current procedures and techniques, such as ITIL and
Agile, to help firms stay compliant.We Certify the pipeline not the Releases.
26. Must Learn what
1. Source Code Vulnerability
2. OSS Library Vulnerability
3. OSS License
4. OSS Version
5. IaC(Infrastructure as Code) - Look for the Drift Status
6. CVE - Common Vulnerability and Exposures
27. Application Security the Textbook way
● SAST
● DAST
● IAST
● Infrastructure Analysis
● Passive Penetration Testing
● Active Penetration Testing
28. There are some amazing stories about DevOps
Just follow these resources:
https://docs.google.com/document/d/1fmNQiqEqHff9q3t670uglZTYQeMfbrl6rDI0r
RzUyMg/edit?usp=sharing
And many more resources and some
amazing books are :
29.
30. Organization must adapt that's
going to be defining the core
competency for the agility.
Or else please wish for the better more easier
consequences
31. Some Research paper that I found Very Useful
1. 2105.07207.pdf (arxiv.org)
2. https://arxiv.org/ftp/arxiv/papers/2107/2107.13633.pdf
3. arxiv paper on devops - Google Search
Editor's Notes
Basics of CI/CD Pipeline. CI and CD stands for continuous… | by Jaanvi Mattalwar | Jaanvi | Medium