Editor's Note: The chapter, "Question Everything" is included in Epic Failures in DevSecOps, Volume 2, which is available for free download.
Interview with Eliza May Austin, with host Justin Miller.
Excerpt from the Chapter 1, "Question Everything" from the book Epic Failures in DevSecOps.
The biggest challenge with making changes is making those changes stick. I think
that’s only one half of the problem. As a security professional, I’m concerned that
some things “stick” too well, becoming unchallengeable, infallible, and immovable.
They become the new paradigm and anyone who doesn’t “get it” is a heretic. That’s
how it was for DevOps ten years ago, and it appears to be the case for DevSecOps today.
Don’t get me wrong, I believe passionately in security and I can see the advantages of a
DevSecOps approach. It’s just that what I see organizations do on the ground does not
always line up with what I believe DevSecOps should be.