DevSecOps Approach in Software Development Case Study: Public Company Logistic Agency

Abstract

Application development has progressed along with the rapid digital transformation. The stakeholders will focus more on cutting operational costs with optimal application quality and security. The DevSecOps approach provides solutions for reducing costs in the software life cycle, increasing software product quality and security. Public Company Logistic Agency (PCLA) is like other companies that must be adaptive to new technology. PCLA has an IT Division in charge of providing technology to support business. Application development by the IT Division has several problems, including application projects that mostly exceed the time, significant changes and additions during UAT, and applications that have much vulnerability. A transformation to the DevSecOps approach is needed to address these problems. In this paper, a Systematic Literature Review (SLR) was used to select journals that matched the study topic to obtain the character and transformation phases of DevSecOps in various case studies. A mixed-method approach aims to collect and analyze data companies in the software development lifecycle. For academicians, this study provides a new understanding of application development in a state-owned enterprise based on a sequential approach and their suitable solutions from the DevSecOps approach. For practitioners, the findings provide potential lessons learned and guide a state-owned enterprise to transform to the DevSecOps approach.