Cloud Security and DevSecOps: What to Expect in 2020

In 2019, significant advancements were observed in cloud computing, DevOps, and security practices, with a strong focus on the transition to public cloud environments and the adoption of serverless and event-driven architectures. This period also saw the rise of Kubernetes and the introduction of various managed services, such as AWS EventBridge and Azure Sentinel, which highlighted the importance of proper configuration to prevent security incidents like data leaks. As organizations increasingly embraced hybrid and multi-cloud solutions, competition in the public cloud industry intensified, marked by Microsoft's $10 billion JEDI contract win and Google Cloud's release of Anthos. Looking ahead to 2020, trends such as observability, intelligent AI/ML analytics, automated security in CI/CD pipelines, and the adoption of the Zero Trust Security Model are expected to gain traction. The integration of DevSecOps practices, including security threat modeling workshops and a shift-left approach to security, emphasizes the growing responsibility of developers in maintaining secure infrastructures. While serverless technology continues to reduce operational overhead, the need for expertise in configuring managed services remains crucial, especially with the anticipated widespread adoption of the Zero Trust Security Model.