Measuring DevSecOps - Building Metrics to Understand Effectiveness and Success

Explore the world of DevSecOps metrics in this comprehensive 53-minute conference talk from NDC Conferences. Dive into the importance of measuring security effectiveness in DevOps environments and learn how to build meaningful metrics for success. Discover why DevSecOps has become an indispensable part of the DevOps world and how it goes beyond simply implementing security automation tasks in build and release pipelines. Gain insights into leveraging automation for faster application of security patches, provisioning of shielded servers, code scanning, and deployment of better-protected applications. Understand the challenges of demonstrating DevSecOps success and driving further transformation through measurement. Explore key questions such as what defines a high-secure team, which KPIs are most relevant, and how to interpret the numbers in real-world scenarios. Learn to create a foundation of DevSecOps metrics by identifying essential security KPIs, implementing measurement techniques, and visualizing the results. Benefit from both theoretical frameworks and technical demonstrations based on Azure DevOps and supporting tools, equipping you with practical knowledge to evolve your DevSecOps methodology across various team types.