U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

BCS CISMP-V9 Exam - Topic 2 Question 113 Discussion

What Is the PRIMARY difference between DevOps and DevSecOps?
C) DevSecOps includes security on the same level as continuous integration and delivery.
A) Within DevSecOps security is introduced at the end of development immediately prior to deployment.
B) DevSecOps focuses solely on iterative development cycles.
D) DevOps mandates that security is integrated at the beginning of the development lifecycle.

BCS CISMP-V9 Exam - Topic 2 Question 113 Discussion

Actual exam question for BCS's CISMP-V9 exam
Question #: 113
Topic #: 2
[All CISMP-V9 Questions]

What Is the PRIMARY difference between DevOps and DevSecOps?

Show Suggested Answer Hide Answer
Suggested Answer: C

The primary difference between DevOps and DevSecOps lies in the integration of security practices. DevOps is a methodology that emphasizes collaboration between development and operations teams to automate the software development process, including continuous integration (CI) and continuous delivery (CD). However, DevOps does not inherently prioritize security as part of the development process.

DevSecOps, on the other hand, extends the DevOps principles by integrating security into every aspect of the software development lifecycle. This approach is often summarized by the term ''shift-left,'' which means incorporating security from the beginning and throughout the development process, rather than treating it as an afterthought or a final step before deployment. In DevSecOps, security is considered a shared responsibility among all team members, and it is addressed through continuous security processes that are as integral as CI/CD in the DevOps culture.


Contribute your Thoughts:

0/2000 characters
Marci
1 month ago
I think the main difference is about integrating security early in the process, but I'm not sure if that's what DevSecOps really emphasizes.
upvoted 0 times
...

Save Cancel