DevOps - DevSecOps
Trevital includes security in the planning stage and throughout the life cycle of the software and applications we deliver. Our directive is to unite software development, operation, and security into a collaborative system to enable stakeholders to work together to proactively address security issues before development and through the deployment process.
DevOps - DevSecOps
DevOps is the combination of cultural philosophies, practices, and tools that increases the ability of our teams to deliver applications and services at high velocity; evolving and improving products at a faster pace than organizations using traditional software development and infrastructure management processes. Trevital’s DevOps Teams are focused on improving the lead time and frequency of the delivery of releases through an enhanced engineering practice that includes a more cohesive collaboration between the development, security, and operations teams through continuous integration and continuous development (CI/CD) delivery. Implementing an automated process between software development so we can build, test, and release software faster while building collaboration between IT teams in the Cloud. These two processes share similar goals. Most importantly it is to eliminate silos while promoting collaboration and teamwork along with faster delivery.
|
|
|
|
|
|
|
|
Plan |
Code |
Build |
Test |
Release |
Deploy |
|
Task management, schedules, roadmaps. |
Code development and review source management tools, code merge. |
Continuous integration tools, version control and build status. |
Continuous testing tools providing feedback on business risks, determine performance. |
Change Management, release approvals, release automation. |
Deploy and monitor performance and end user experience and security checks. |
Agile Methodology
Agile methodology is a way to manage a project by breaking it up into several phases. It involves constant collaboration with stakeholders and continuous improvement at every stage. Once the work begins, teams cycle through a process of planning, executing, and evaluating. Trevital’s design and development teams follow the best practices of SAFe® Agile development using Scrum and Kanban methods and an iterative process with multiple releases, UAT to include Stakeholder and business owner input along the way. The Agile software methodology we use includes the full Agile lifecycle, including the following processes: User Story Development; User Story Mapping, Time Boxing, Test Driven Development, Sprint Ceremonies (sprint planning, daily scrum, sprint review, and retrospective); Refactoring; Planning Poker; Domain Driven Design; Iterative and Incremental Design and Development; Product and Sprint Backlog; Agile Testing; Integrated Team (Product Owner and Scrum of Scrums, upstream and downstream interface systems.
CI/CD Pipeline
Using the Continuous Integration and Continuous Development (CI/CD) pipeline is the step Trevital's DevSecOps teams follow when we deliver a new version of the applications we develop through the software development life cycle via automation. We develop codes faster by automating CI/CD throughout the development, testing, production, and monitoring phases of the software development lifecycle.
Continuous Testing
The Quality of the products we deliver is ensured through our rigorous automated testing process as part of our software delivery pipeline to allow immediate feedback on the business risks associated with a software release. This process also reduces the risks of issues reoccurring or progressing to the next stage.
Security
The goal of our DevSecOps teams is to unite software development, operation, and security into a collaborative system with our stakeholders working together to proactively address security concerns before the software is developed and continue through the deployment process.
Best Practice
There are many steps in DevSecOps and DevOps Best Practices and they start with the adoption by the organization. Trivial works with leaders to understand the practices that evaluate the need to implement DevOps practice, break silos, encourage collaboration, put the end user front and center, start small and scale up, automate processes, select tools, integrate and deliver continuously, and achieve better results with monitoring and feedback.
Quality Assurance
Objective, customer-focused testing throughout the entire project lifecycle to deliver production-ready software. Testing includes 508 compliance using WAVE during development and JAWS testing for all Users with Disabilities who have the opportunity to endure the content and data delivered through the products we deliver. We follow US Web Design Services (USDWS) from concept to design to development, it is never an afterthought.