Answer-first summary for fast verification
Answer: Plan and develop
In the Microsoft Cloud Adoption Framework for Azure, the 'Plan and develop' stage of the CI/CD process is where most of the security-related tasks are performed. This includes threat modeling to view the application through the lens of a potential attacker, using IDE security plug-ins and pre-commit hooks for lightweight static analysis checking, and adhering to peer reviews and secure coding standards to identify effective security coding standards and pre-commit hooks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You need to recommend a security methodology for a DevOps development process based on the Microsoft Cloud Adoption Framework for Azure. During which stage of a continuous integration and continuous deployment (CI/CD) DevOps process should each security-related task be performed?
Note: Each correct selection is worth one point.
To provide context, modern development practices often follow an agile methodology. Scrum, a popular implementation of the agile methodology, begins each sprint with a planning activity. Integrating security into this part of the development process involves the following tasks:
A
Plan and develop
B
Operate
C
Build and test
D
Deploy