Enterprises are becoming increasingly interested in the adoption of DevSecOps to improve the flow of value across the SDLC and post-production phases. However, the challenge lies in identifying the right opportunities for improvement in alignment with business and engineering goals and defining an end-to-end transformation approach.
Project and operation managers need to identify pockets of activity that will deliver value towards the intended outcome of faster releases and accelerated operations without compromising other factors. These improvement pockets are called value streams and optimizing them will lead to better efficacies in automating the product life cycle.
The Assess, Prioritize, and Measure (APM) model addresses the key adoption challenges and helps trace the SDLC workflow right from ideation to measurement post-delivery. Some of the key steps include:
- Assessment of value streams: Value streams are assessed to deliver a 360-degree view of end-to-end SDLC phases and post SDLC phases.
- Prioritization of recommendations: Recommendations derived from the assessment outcomes are classified into quick wins, mid-term, and long-term goals using the prioritization matrix, and a structured roadmap for adoption is developed.
- Measurement of intrinsic value delivery: DevSecOps adoption success rate is measured through business and IT metrics and VSM is repeated at regular intervals to ensure continuous improvement.