The DevOps Control Framework #
DevOps Values #
The DevOps Control Framework is a defined secure software development process with DevOps Culture at it’s heart.
Continuous Compliance #
This is the distillation of the real processes in use by leading regulated institutions to deliver compliant, secure, and audit-ready software.
The purpose of a Secure Software Development Lifecycle (SSDLC) is to provide a defined, repeatable way of working that manages IT risks associated with software development. It is a governance framework which forms a definition of how things should be done, which should be adhered to in implementation, which produces proof of conformance.
The scope of this framework is to secure the entire value stream of software development.