During a quarterly release audit, the CISO observes that functional features pass through the CI/CD pipeline quickly, but penetration testing is still executed only at the final pre-release gate. She instructs the development director to adopt a software development approach that embeds automated security checks into every CI/CD stage and makes security a shared responsibility. Which approach BEST meets this requirement?
DevSecOps specifically extends DevOps by shifting security left-integrating static, dynamic, and dependency scans, policy checks, and compliance gates into each stage of the CI/CD pipeline. Responsibility for security is shared by development, operations, and security teams, reducing late-stage defect discovery. In contrast, traditional DevOps emphasizes rapid delivery and may bolt security on after builds. Waterfall with a gated security review keeps most security testing in a single late phase, increasing risk if defects surface. Scrum is an Agile framework for iterative delivery; while security can be added, it is not an inherent part of the framework. Therefore, the approach that best satisfies the CISO's directive is DevSecOps.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is DevSecOps?
Open an interactive chat with Bash
How does DevSecOps differ from traditional security approaches?
Open an interactive chat with Bash
What tools are commonly used in a DevSecOps workflow?
Open an interactive chat with Bash
ISC2 CISSP
Software Development Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .