What is the role of governance in DevOps and why does InfoSec care? Ultimately, our governance programs can serve as an ally. Policies defined in governance programs help us define how the processes and practices we implement within the pipeline tie back to business objectives.
In the evolving world of security, where we're becoming more aware of the need to show security as a business enabler, governance provides the vehicle by which we can easily do that. Don't look to governance as a hammer to help drive the practices into the pipeline, use it to demonstrate why the practices you've championing are right for the business's goals.
Find out more about the pillar of DevSecOps culture, and reach out if you want to learn more.