How to Be a DevSecOps Engineer

Russ Memisyazici is a DevSecOps engineer and cloud architect with 30+ years experience in IT and cyber security. From coaching US CyberPatriot teams to building the Virginia Cyber Range, he's got quite the colorful career.

By-the-way, it’s pronounced: my-mish-yah-zuh-juh.

In this interview, Russ shares his knowledge on:

  • Cloud risks
  • Future cloud technologies
  • Thoughts on cyber certifications
  • His personal journey in cyber security.

There's also advice for starting a DevSecOps career too!

DevSecOps combines cyber security with traditional DevOps to help developers deliver secure apps. As a DevSecOps engineer, you’ve got to be well-versed in both software development, IT operations, and cyber security. Whether it’s application security assessments, cloud deployments, or coding, you need a wide range of skills. It’s system administration on steroids.

A common DevSecOps workflow would be defining your entire infrastructure and deployment cycle as code. Then you would automate the tests, security assessment, and deployment with a CICD tool like Jenkins.

DevSecOps personnel are very sought after in the startup world. When it comes to building scalable infrastructure and deploying apps, DevSecOps folks are commandos of the tech world. It’s a fast-moving domain, with terminology and technology changing from one day to the next. Soon the term “DevSecOps” might even be replaced with “GitOps.”

But the most important thing that Russ highlights is to focus on the basics. Fundamentals like networking, scripting, or system administration, don’t change as much. Fancy new technologies that are coming out are all built on top of these skills. But they do take reading books and good old-fashioned keyboarding to acquire.

Audio version


How to Be a DevSecOps Engineer

Special guest

Aras "Russ" Memisyazici, M.Sc.