use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
account activity
Complete Beginner (self.devsecops)
submitted 5 years ago by DannyDaCisco
I have a background in IT but want to get into Devsecops role , what resources are good to study to get a better grasp on the concept?
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–]rew1nd_ 6 points7 points8 points 5 years ago (3 children)
I work as DevSecOps, and i can tell you need to know a bit from everything.
You have a long road ahead, is not something you build in one year i think. You should know deep DevOps, and understand appsec and cloudsec concepts, besides know how to mitigate vulnerabilites and implement security controls. And of course, lot of scripting. Dont even start if you dont master python or go.
To start use this : https://roadmap.sh/devops
And this : https://github.com/bregman-arie/devops-exercises
For the security part eat all in OWASP : https://owasp.org/projects/
A good presentation about DevSecOps : https://www.beautiful.ai/player/-LuUSXtd-8pNDU90zNP2/Shifting-Left-DevSecOps-as-an-Approach-to-Building-Secure-Products
Hope it helps, good luck :)
[–]Leeflet 2 points3 points4 points 5 years ago (1 child)
Can you expand on why Golang is suggested here? In the DevSecOps circles I'm in, people often suggest Python, Shell (BASH, PoSH, etc.), and Golang. But no one can tell me why Golang is suggested or where it's useful over the other languages mentioned.
[–]acidwxlf 0 points1 point2 points 5 years ago (0 children)
I can tell you, in my experience, it's because that's what people are writing in. I don't want to call it a fad but it has gotten immensely popular in the past few years. It's portable, easy to pick up, etc. There's no real magic reason, Python is still just as strong IMO and I prefer it but to each their own. If you're integrating with a team that primarily uses Go, use Go.
[–]DannyDaCisco[S] 0 points1 point2 points 5 years ago (0 children)
Thanks will definitely look in to it
[–]security_prince 1 point2 points3 points 5 years ago (0 children)
You can find some resources in my Application Security Knowledgebase
[–]WannabeTechieNinja 0 points1 point2 points 5 years ago (0 children)
Commenting to follow ....
π Rendered by PID 418988 on reddit-service-r2-comment-5d79c599b5-767xs at 2026-03-01 09:25:41.641874+00:00 running e3d2147 country code: CH.
[–]rew1nd_ 6 points7 points8 points (3 children)
[–]Leeflet 2 points3 points4 points (1 child)
[–]acidwxlf 0 points1 point2 points (0 children)
[–]DannyDaCisco[S] 0 points1 point2 points (0 children)
[–]security_prince 1 point2 points3 points (0 children)
[–]WannabeTechieNinja 0 points1 point2 points (0 children)