10 DevOps Key Terms – Primer [#DevOpsTerms #DevOpsKeyTerms #AgileViews]
1. DevOps
2. Agile
3. Continuous Delivery / Continuous Deployment (CD)
4. Continuous Integration (CI)
5. Automation / Automated Builds
6. DevSecOps
7. Software Development Lifecycle (SDLC)
8. Shift Left
9. User Acceptance Testing / Canary Rollout
10. Value Stream Map
1. DevOps
“DevOps is not about a single role or position, but about how you approach and control the development process. DevOps practices describe and systematize the development process in order to build, test, and deliver with better speed and reliability.”
– Maksym Kunytsia, chief product officer, Chanty
2. Agile
“Agile is a set of four value statements and 12 principles that originally described a better way of developing software. The Agile Manifesto was conceived in 2001 by 17 leading practitioners of new methodologies. Agile is not a methodology but a mindset. It represents a way of working that incorporates the principles of collaboration, systems thinking, and empowerment.”
– Alan Zucker, founding principal, Project Management Essentials
3. Continuous Delivery / Continuous Deployment (CD)
“CD has two different meanings, which can be confusing. It refers to continuous delivery and continuous deployment. Continuous delivery refers to continuous delivery of value; it is a foundational Agile and DevOps principle. Continuous deployment is using automation tools to allow organizations to quickly deploy software into production. By automating the software development value stream, organizations can significantly reduce the amount of time it takes to develop, test, and deploy into production, which enables continuous delivery of value.”
– Alan Zucker, founding principal, Project Management Essentials
4. Continuous Integration (CI)
“This technique continuously merges source code updates into one mainline to prevent merge conflicts by integrating code from different developers as soon as it’s available. It creates a real-time window into the current state of the software system and quality measurements, enabling constant engagement of all DevOps team members. For security teams, CI creates an opportunity to enforce secure coding practices and vulnerability assessment early in the software development lifecycle.”
– Rani Osnat, VP strategy, Aqua Security
5. Automation / Automated Builds
“Automated builds enable DevOps to compile source files, package compiled files into compressed formats, and produce installers. Repeatable build steps can be done with no information other than stored source code that is then automated.”
– Rani Osnat, VP strategy, Aqua Security
6. DevSecOps
“DevSecOps is about creating a ‘security as code’ culture, with continuous fluid collaboration between development, security, and operations teams. The DevSecOps movement, like DevOps itself, is focused on creating automated solutions for complex software development processes within an Agile framework. It builds on the cultural changes of DevOps to integrate security earlier in the development phase.”
– Dmitry Sotnikov, vice president, Cloud Platform, 42Crunch
7. Software Development Lifecycle (SDLC)
“Organizations developing applications have in place a process by which each application is designed, developed, tested, and deployed. This sequence of stages that define these processes is called the software development lifecycle. An organization’s SDLC helps shape the way their apps are built and defines the exact processes each application should go through, as well as the milestones an application needs to hit before going to the next stage of the SDLC.”
– Matt Rose, global director application security, Checkmarx
8. Shift Left
“A shift-left approach to application security argues that security needs to be handled from the early phases of application design and coding – by enabling a DevSecOps process. This can prevent security defects early on and help ensure that security standards stay high throughout code iterations. Unfortunately, security is hard. Applications are only as secure as their weakest links.”
– Dmitry Sotnikov, vice president, Cloud Platform, 42Crunch
9. User Acceptance Testing / Canary Rollout
“User acceptance testing injects the end-user community into the testing process. This will usually take the form of a pilot release where certain users have access to the new features. They will operate the software in the production environment to identify any problems or potential improvements before the features are released to the broader community as a whole.”
– Mark Runyon, principal consultant, Improving
“Drawing inspiration from coal miners who used to bring canaries with them into the mines to detect deadly gas, canary rollouts reduce risk when introducing a new software version in production by first rolling out a new version to only a small group of users. Canary releases are a best practice for Agile development organizations practicing continuous delivery to move faster, and security teams can leverage this technique to monitor applications in a low-risk environment. – Rani Osnat, VP strategy, Aqua Security
10. Value Stream Map
“Value is an important concept in lean and Agile practices. The focus is on delivering value to our customers. Value stream mapping is a way of understanding the process steps for creating value. A value stream map starts at the right side of a page and goes to the left, tracing the steps that create the finished product. After completing the value stream map, teams should identify which steps provide value and those that don’t. Steps that don’t provide value should be eliminated or streamlined.”
– Alan Zucker, founding principal, Project Management Essentials
Adapted from:
DevOps terms: 10 essential concepts, explained:
The Enterprisers Project
Like this? Leave your thoughts below...