Enterprises are till trying to figure out DevSecOps:
[M]any organizations remain stuck in siloed approaches that pose problems due to competing demands for speed, efficiency and risk reduction. Enterprises that effectively integrate security into software development and deployment–both through platforms and tools, and via cross-team collaboration– are better positioned to drive velocity, quality and innovation while maintaining and even improving security."
Also, if you must Kubernetes, try to run just one, or as few as possible: ”given the array of tools and personas involved, organizations must contend with complexity, staffing and other hurdles in addition to cost, security and integration issues. Thus, it is critical to leverage a single platform that integrates the many open-source components of an effective Kubernetes deployment and supports the different personas (e.g., cloud admins, platform engineers and security teams) involved.”
🔗 Analyst Insight Series: Security and Collaboration—Core Tenets of Successful Platform Engineering