In the past security has been something that was added only at the end of the development process. But as release cycles have accelerated this is no longer a viable approach. DevSecOps (development, security and operations) is all about automating the integration of security at every phase of the software development lifecycle. It’s still a relatively new idea though, so we spoke to Archie Agarwal, founder and CEO of ThreatModeler, to find out about the current state of DevSecOps and its role in managing threats. BN: What are your thoughts on the current state of DevOps/DevSecOps? AA: It is hard … Continue reading DevSecOps and the importance of threat modeling [Q&A]