The Repository @ St. Cloud State

Open Access Knowledge and Scholarship

Date of Award


Culminating Project Type

Starred Paper



Degree Name

Information Assurance: M.S.


Information Assurance and Information Systems


Herberger School of Business

First Advisor

Akalanka B. Mailewa

Second Advisor

Mark Schmidt

Third Advisor

Erich P. Rice

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Keywords and Subject Headings

Azure, DevOps, DevSecOps, security, systematic literature review


DevOps (Development & Operation) is a set of practices that combine software development (Dev) and IT Operations (Ops). It aims to shorten the Software Development Life Cycle (SDLC) process by providing Continuous Integration (CI) and Continuous Deployments (CD). The effort to increase Security in DevOps has resulted in the DevSecOps paradigm. Which is a set of practices, cultural approaches, and tools that bring together software development (Dev), IT Operations (Ops), and security (Sec) to increase an organization's ability to deliver applications and services at high velocity securely. We conducted a Systematic Literature Review of 54 peer-reviewed studies. The Thematic analysis method was applied to analyze the extracted data. We identified challenges related to adopting DevSecOps, Solutions, and Integration. We also identified key gaps by evaluating various solutions against the challenges. The results of the study were classified into DevOps tools and Security tools.


For Revision