DevSecOps Playbook¶
The DevSecOps Playbook provides enterprise software engineers with solutions, capabilities, and code developed to solve real-world problems. Everything in the playbook is developed with, and validated by, some of Microsoft's largest and most influential customers and partners.
This Playbook section provides DevSecOps solutions focused on the following areas:
- Apply advanced DevOps and DevSecOps practices to shift security left in the software development lifecycle
- Proactively establish a security strategy
- Iterate delivery automation toward more secure software
- Accelerate velocity by reducing time from build to release
- Collaborate with compliance teams to understand and improve the organization’s security posture
DevSecOps solutions¶
- Improve release artifact and workload integrity in Kubernetes via a secure software supply chain
- Infrastructure as Code(IaC) Orchestration & Testing for Enterprise Customers
- Secrets Management
About the Data Playbook¶
These Playbook solutions employ good engineering practices to accelerate real-world application development. Common themes include:
- Improving application design and developer productivity by sharing code and knowledge developed by experts for Microsoft customers.
- Using automation to make repetitive tasks faster, more reliable, and auditable
- Making application deployments and operations secure and observable.
- Securing applications by following security best practices at all stages of the engineering lifecycle.
- Writing portable solutions that run in multiple locations, including edge devices, on-premises data centers, the Microsoft cloud, and competitor's clouds.
Integrated solutions¶
Playbook solutions span multiple Microsoft products and services and focus on creating integrated end-to-end solutions often using a range of open-source software libraries.
Proven with real customers¶
All code linked from playbook solutions and capabilities was created working with our customers to develop production solutions. This documentation and code is generalized to remove confidential details.