DevSecOps is an approach to the application development process, in which security methods are applied to each stage of the development of the process. In addition, an important principle in this approach is “shift left”. Shift left is the principle that the earlier security methods are implemented in the development process, the less expensive and painless it is to fix these vulnerabilities.
The main tools of INTRASYSTEMS in working on projects involving this approach are technologies for discovering and fixing vulnerabilities, such as SAST, DAST, IAST, which are used at the stages of planning, developing and testing applications. At the stages of implementation, operation and support of applications, the following application protection technologies are used during operation: WAF, RASP.