Let's talk about DevOps resources for a robust, secure pipeline!

Mahsa Tehrani
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 23, 2021

What exactly is a DevOps Pipeline?

A DevOps Pipeline is a set of automated processes and tools that allows developers and operations professionals to collaborate on building and deploying code to a production environment.

Continuous is a differentiated characteristic of a DevOps pipeline. This includes continuous integration, continuous delivery/deployment (CI/CD), continuous feedback, and continuous operations. Instead of one-off tests or scheduled deployments, each function occurs on an ongoing basis.

Since there isn’t one standard DevOps pipeline, an organization’s design and implementation of a DevOps pipeline depends on its technology stack, a DevOps engineer’s level of experience, budget, and more. A DevOps engineer should have a wide-ranging knowledge of both development and operations, including coding, infrastructure management, system administration, and DevOps toolchains. 

DevOps_Pipeline (2).png

How automated testing enables DevOps

Test automation helps development teams build, test, and ship faster and more reliably.

In the early 2000s, companies began adopting agile practices, embracing an accelerated development lifecycle marked by frequent customer feedback. This later drove the adoption of tools that enable continuous integration and continuous delivery that automated the build, test, configure, and deploy processes. 

DevOps security tutorials

As software applications grow in codebase scale and complexity, so do the surface areas for security vulnerabilities and exploits. And, as more organizations adopt a DevOps approach, which automates and integrates the processes between software development and IT teams, security as a “bolt-on” no longer works. Instead, teams need to embed security measures into every stage of the development workflow.

The term “DevSecOps” refers to integrating security throughout the DevOps lifecycle, and ensures security is built into the product, instead of applied to a finished product. To do this, organizations must ensure the entire DevOps team, including developers and operations teams, share responsibility for following security best practices. They should also enable automated security checks at each stage of software delivery by integrating security controls, tools, and processes into the DevOps workflow.

Learn more about incorporating security into the DevOps lifecycle with these tutorials below:

How Snyk and Atlassian enable DevSecOps

Achieve DevSecOps with Bitbucket Pipelines and Snyk Pipelines 

 

Questions? Reply below and we'll have a team member answer! 

1 comment

Comment

Log in or Sign up to comment
Lasse Mikkonen May 31, 2023

Like to get similar insight for SonarQube/SonarCloud integration with BB Pipelines.

TAGS
AUG Leaders

Atlassian Community Events