DevOps has reached a point in its adoption at which it influences the way organizations approach software security. Engineering has begun to prioritize automation over human-driven tasks, experts say. The BSIMM10 report is the product of a multiyear study of real-world software security initiatives. Security teams will become part of the application life cycle, or “value stream,” to use a DevOps term. The industry is seeing the rise of an organizational structure that values SSI but doesn’t integrate software security groups into the process.”]
Source: https://www.darkreading.com/application-security/bsimm10-emphasizes-devops-role-in-software-security