Making Security an integrated part of the Software Development Lifecycle

SDLC – How we can improve security in our development by making it an integrated part of the development process. Today we use a large variety of tools for improving our development experience and process. We have unit tests to make sure our code performs like we intend. Code reviews for sharing knowledge and catching bugs. We use automated deployment to ensure that what we build is what we deliver, and we can package this with containers. With all these things in our pipelines, we have a strong foundation for adding security to our development process without having to radically restructure how we work.