Towards a Hypothetical Framework to Secure DevOps Adoption: Grounded Theory Approach

Abstract

Security in DevOps is a challenging feature because traditional existing methods of security are not fulfilling the exact requirements of DevOps. To make DevOps activities successful for organizations this study will help to identify concerns about DevOps security in real world by interviewing the practitioners having DevOps working experience. The Classical grounded theory approach has been used to build our theory. We interviewed 13 practitioners working across five companies from different regions. We contributed to identify security concerns in DevOps and try to present a theoretical model to improve understanding and guidance of DevOps adoption. The security concerns were marked as functional and nonfunctional based upon the interviews concepts to help practitioners having understanding about particular concerns. Therefore, this theory will highlight security concerns that are hindering the adoption of DevOps successfully.