Last year, the SANS application security survey looked at how application security programs kept pace with increasing speed of delivery in agile and DevOps organizations. But integrating security into DevOps requires more than speed—to be truly effective, it requires new mindsets, processes and tools. Security and risk management leaders must adhere to the collaborative, agile nature of DevOps to be seamless and transparent in the development process, but certain factors are holding back the incorporation of security into the software development lifecycle as seamlessly as possible.

This year, SANS intends to delve into the specific challenges and risks that organizations are finding as they start to converge the two often disparate practices processes and platforms involved in development and security in a unified Secure DevOps. This new survey will examine the emergence of the integration of development, IT and security, as well as explore the implications for practitioners. Results will be addressed at the Secure DevOps Summit & Training 2018, Oct. 22–29, 2018, and the associated webcasts will be held Nov. 8 and 9, 2018.

At the end of the survey, you will have the opportunity to enter the contest for a $400 Amazon gift card—OR a free pass to the SANS Secure DevOps Summit in October—by providing your contact information. Note, providing your contact information is optional and that information will not be shared outside the SANS Analyst Program. On rare occasions, our SANS Analyst may contact you during paper development, especially if you leave an interesting comment! Regardless, contact information will not be shared with the survey sponsors. For more information, read the SANS privacy policy.

* 1. By responding to this question, you accept the terms of the privacy policy. This survey should be taken by professionals working on or active in management; design, development and implementation (DD&I); or evaluation/testing related to the security or compliance of applications. Does this describe you?