How often are your teams releasing software into production? Yearly, monthly or even daily? How about multiple times a day? Or even 17,000 times a day?!
In today's world, speed wins the marketplace. To outpace the competition, organisations must be capable of delivering value faster than ever. They need to learn, experiment and implement not in months or weeks but in days and hours.
DevSecOps is a culture
However, delivering safe, secure, working software rapidly is hard. It demands a level of engineering rigour that slower-moving organisations can only dream of. But it is also a well-understood problem - working practices such as continuous delivery, testing, automation, autonomous teams etc are all essential cogs in the well-oiled DevSecOps machine.
Central to everything though is a pervasive culture that values collaboration, openness and continuous learning and improvement. High-performing teams are always trying to find ways to be better. We believe that continuous education should also be part of this drive. Cybersecurity or engineering best practice training is not a one-and-done deal but something that the best teams do all the time. With your help, we'd like to test this viewpoint.
Take the survey
Our DevSecOps Culture Survey should take no more than 2-3 minutes of your time. It is broken into 2 parts. Part one asks questions about the level and frequency of cybersecurity and engineering-related training in your organisation. Part two enquires about actual working practices, such as threat modelling and release rates.
Once we have analysed the data, we will follow up with a post detailing our findings, anonymised of course. If you would like to help us but have concerns, please feel free to reach out and let us know.
Thank you in advance for your input!
Chris van Es
Head of Engineering