DevSecOps at every phase of the SDLC
DevSecOps can be viewed not only from a maturity perspective but from a discrete capabilities perspective.
That is, your team can add individual tools and practices one at a time. Further, teams adopting DevSecOps may need to think beyond the typical metrics used by development, security and operations teams. GSA, the Government Services Administration shares a range of high-value and supporting metrics and capabilities to consider as teams collaborate across disciplines, including deployment frequency and MTTR as well as frequency of vulnerability patching and privilege auditing.