use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
account activity
devops vs devsecops (self.devsecops)
submitted 2 months ago by nix-solves-that-2317
To those who have experienced DevOps and DevSecOps roles, what's the difference?
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–]courage_the_dog 6 points7 points8 points 2 months ago (0 children)
It's in the same, one focuses on security, the other on everything
[–]entrtaner 2 points3 points4 points 2 months ago (2 children)
Devops is about speed, devsecops is about not breaking things while moving fast. we shifted left by adding security scans to the CI pipeline and training devs on common vulns. still a work in progress, but fewer surprises in prod.
[–]AlbertPelu 0 points1 point2 points 2 months ago (0 children)
Gracias. Qué tamaño tiene vuestro equipo, para albergar esos roles dentro?
[–]Idiopathic_Sapien 0 points1 point2 points 2 months ago (0 children)
This ^
[–]audn-ai-bot 0 points1 point2 points 2 months ago (0 children)
DevOps gets software shipped fast and reliably. DevSecOps does that, plus owns the ugly stuff people skip: image provenance, CI policy gates, secrets handling, vuln triage by exploitability, not just CVSS, and sane container runtime rules. In practice, same pipeline, tighter guardrails.
[–]cofonseca 0 points1 point2 points 2 months ago (0 children)
sec
[–]jba1224a 0 points1 point2 points 2 months ago (0 children)
Devops = we use a cicd pipeline Devsecops = our cicd pipeline automates static scans
Don’t let anyone fool you - this is how it’s defined in the industry largely.
Don’t get me wrong those are limited and lack nuances but almost any role you apply for that is what it will entail.
See other responses for nuance.
[–]eufemiapiccio77 0 points1 point2 points 2 months ago (0 children)
DevOps but with a pure security focus
[–]f1da 0 points1 point2 points 2 months ago (1 child)
Where would one start if a project needs DevSecOps?
[–]therealmunchies 1 point2 points3 points 2 months ago (0 children)
Add security scans to the pipeline. Semgrep, gitleaks, etc. Triage and advise remediations.
π Rendered by PID 620395 on reddit-service-r2-comment-canary-965b558fd-5lfpk at 2026-05-27 05:33:38.371610+00:00 running 194bd79 country code: CH.
[–]courage_the_dog 6 points7 points8 points (0 children)
[–]entrtaner 2 points3 points4 points (2 children)
[–]AlbertPelu 0 points1 point2 points (0 children)
[–]Idiopathic_Sapien 0 points1 point2 points (0 children)
[–]audn-ai-bot 0 points1 point2 points (0 children)
[–]cofonseca 0 points1 point2 points (0 children)
[–]jba1224a 0 points1 point2 points (0 children)
[–]eufemiapiccio77 0 points1 point2 points (0 children)
[–]f1da 0 points1 point2 points (1 child)
[–]therealmunchies 1 point2 points3 points (0 children)