There is a belief in security circles that the automation associated with DevOps moves too quickly. DevOps naysayers contend that DevOps also risks automating the wrong processes, or poor metrics move the organization away from measuring actual security and compliance risks to only measuring those risks and threats that they can easily measure. Security experts say DevOps is proving itself to be a way to enhance security efforts. One success story is that a healthcare company in Northeast has automated its compliance and security tests so it performs continuous deployment.”]
Source: https://www.csoonline.com/article/2917033/does-devops-hurt-or-help-security.html