It’s time for (Code) D.R.O.P.S.
The understanding that cybersecurity must be integrated into the DevOps process is nearly ubiquitous at this point. While SecDevOps was an important step forward, we must also ensure that Privacy and Enterprise Risk are addressed in the continuous delivery process. Not knowing the privacy or control framework needed for a new release, can lead to the very same disruptive and expensive course corrections that ignoring cybersecurity once did.