Software Development Empowered and Secured by Integrating A DevSecOps Design

Authors

  • Samavia Riaz Computer Engineering, Department of Computer Systems Engineering, The Islamia University of Bahawalpur, Paksitan.
  • Ayyan Asif Master of Science in Data Analytics (Stem), Department of Computer Science, New Mexico State University, Las Cruces, NM, USA.
  • Younus Khan Department of Computer and Mathematical Sciences New Mexico Highlands University, Las Vegas, NM; USA.
  • Muhammad Ibrar Department of Computer and Mathematical Sciences New Mexico Highlands University, Las Vegas, NM; USA.
  • Saira Afzal Department of Computer Science, The Sahara College Narowal, Pakistan.
  • Khalid Hamid Department of Computer Science, Superior University Lahore, 54000, Pakistan.
  • Sehar Gul Department of Computer Science, Sukkur IBA University, Sindh, Pakistan.
  • Muhammad Waseem Iqbal Department of Software Engineering, Superior University Lahore, 54000, Pakistan.

Keywords:

DevSecOps, Software Development, Static Application Security Testing, DevOps, Life Cycle, Agility

Abstract

This made the development of software grow fast, injecting speed and agility in the processes of delivery of software, but integrating security into these high-speed environments has remained a challenge. The solution to this problem comes through the adoption of a methodology known as DevSecOps, encompassing security at each step in the lifecycle of software development. It explored the adoption and value of DevSecOps, concentrating more on automation, vulnerability detection, and continuous security testing. It outlines a comprehensive review of available literature on the topic, with a special focus on the leading tools in this list, namely Static Application Security Testing (SAST), Software Composition Analysis (SCA), and Dynamic Application Security Testing (DAST). The paper will go on to discuss real examples of DevSecOps implementation and follow that up with a discussion of emerging trends, such as machine learning, cloud-native security, and zero-trust models. The study depicts the fact that, though DevSecOps has not matured as a concept yet, its adoption is at a very critical phase in building secure, efficient, and resilient software systems.

Downloads

Published

2025-03-01

How to Cite

Samavia Riaz, Ayyan Asif, Younus Khan, Muhammad Ibrar, Saira Afzal, Khalid Hamid, Sehar Gul, & Muhammad Waseem Iqbal. (2025). Software Development Empowered and Secured by Integrating A DevSecOps Design . Journal of Computing & Biomedical Informatics, 8(02). Retrieved from https://www.jcbi.org/index.php/Main/article/view/889

Issue

Vol. 8 No. 02 (2025): Journal of Computing & Biomedical Informatics

Section

Articles

License

This is an open Access Article published by Research Center of Computing & Biomedical Informatics (RCBI), Lahore, Pakistan under CCBY 4.0 International License