Techniques to mitigate risk, and answers to the most common questions about value creation, compliance, and DevOps.
The goal of the DevOps Audit Defense Toolkit is to educate IT management and practitioners on the audit process so they can demonstrate to auditors they understand the business risks and are properly mitigating those risks.
We’ve studied a number of organizations using DevOps and continuous delivery practices that are also subject to various compliance requirements.
The Toolkit summarizes the techniques they use to mitigate risk, and also provides a section answering the most common questions about value creation, compliance, and DevOps. The information in this document should help organizations wanting to pursue DevOps and continuous delivery explain their approach and improve communication between IT and audit.