Gina Smith, a research manager for DevOps in Asia/Pacific with IDC explains that with the COVID-19 pandemic going into its third year, Asia/Pacific organizations are looking to DevOps processes and practices now more than ever. 

"The need to deliver evocative and secure applications and services is unrelenting. Mature DevOps efforts will combine IT, development, and business resources to help organizations stay competitive and resilient moving forward," she adds.

Gartner predicts that through 2022, 75% of DevOps initiatives will fail to meet expectations due to issues around organizational learning and change.

In this episode of PodChats for FutureCIO, we are joined by Dirk de Vos, Director, Channels for Asia Pacific at GitLab, to share with us his perspective on How DevOps practitioners see DevSecOps.

1.       Briefly define DevOps and describe the DevOps landscape in Asia today? 

2.       Compared to DevOps as practised in the US, how do Asian developers rate?

3.       Is it fair to say that developers (in Asia) – whether in-house or those working for a software house – are struggling to incorporate security aspects/processes into the development cycles, irrespective of whether this is waterfall or agile, long-form or low-code/no-code? What are the top three reasons why this is so? [lack of budget, misalignment between SecOps and DevOps, limited collaboration and transparency]

4.       Define DevSecOps and how mature is DevSecOps as a practice in Asia-Pacific? What needs to happen to accelerate this (training, certification, practice, etc)? [more education needed]

5.       For DevOps teams, do you see the use of testing tools as able to minimise risks associated with poor coding practice, etc?

6.       Do you see AI as supporting DevOps teams? To what extent should DevOps teams trust AI tools with application development, including testing, failure forecasting, resource management, and root cause analysis?

7.       What is the way forward for CIOs, and DevOps teams in the practice of DevSecOps?