Software Engineering Institute

Organizations often struggle in applying DevSecOps practices and principles, particularly in heavily regulated and cybersecurity-constrained environments, because they lack a consistent basis for managing software-intensive development, cybersecurity, and operations in a high-speed lifecycle. These organizations need an authoritative reference in order to fully design and execute an integrated DevSecOps strategy in which all stakeholder needs are addressed. The SEI developed the DevSecOps Platform Independent Model (PIM) to enable organizations to implement DevSecOps in a secure, safe, and sustainable way in order to fully reap the benefits of flexibility and speed available from implementing DevSecOps principles, practices, and tools.