Security is not owned by just one person or team. When it comes to application development, security experts may understand the security principles, but lack knowledge of the development lifecycle. At the same time, application owners understand their apps but may not be focused on security -- and don’t necessarily understand the potential security risks. This can lead to conflicting objectives across the organization, especially when it comes to security policy management. Security teams want to review and control changes while application owners seek faster release times. The push and pull of a secure release process become increasingly difficult and increasingly tense.
This webinar will highlight the importance of shifting-left. Shifting left for policy generation in the CI/CD pipeline is the best approach to resolve the tension between security and app development. Applying the shift-left practice at an earlier stage in development can align security and application owners together without adding work for both teams.
With testing at the core of this approach, teams are able to share a common goal for secure development that also meets release goals. In 2021, the strategy of shifting left for security policy management will foster significantly change how new applications are brought to market.