Enterprise IT Governance and DevSecOps: A Grounded Theory Literature Review

  • Date 21 Nov 2019 - Thursday

Enterprise IT Governance and DevSecOps: A Grounded Theory Literature Review

21 Nov 2019, 15:40 - 16:30

Track 4: Security risk & compliance
Language:
English

The new approach driving continuous integration, deployment and security in short release cycles – DevSecOps – is challenging established enterprise IT governance practices designed to work in predictive, waterfall-like approaches.

After this session you will be able to:

  • Describe foundational concepts of DevSecOps
  • Define how a COBIT 2019-based enterprise IT governance system can adapt concepts from DevSecOps
  • List main risk areas in the implementation of DevSecOps from an enterprise IT governance perspective
  • Describe how asynchronous and continuous conformance processes may enable compliant IT governance operations

 

Contributors

  • Altaz Valani

    Speaker

    Director of Research

    Security Compass

    Altaz Valani, Director of Research at Security Compass, manages the overall research vision and team. He is a regular conference speaker who conducts...

  • Eduardo Lopez

    Speaker

    McMaster University/Security Compass

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.