DevOps purists may chafe at the DevSecOps term given that security and other important practices are supposed to already be an integral part of routine DevOps workflows. But the reality is that security often gets more lip service than thoughtful and systematic integration. This00a0despite a threat environment, distributed development teams, and rapid iterative releases requiring security approaches that are continuous, adaptive, and heavily automated. Red Hat2019s expertise with open source software and practices offers direct lessons for DevSecOps. In this session, we2019ll look at successful practices that distributed and diverse teams use to iterate rapidly while still reacting quickly to threats and minimizing business risk. We2019ll discuss how a platform like OpenShift can serve as the foundation for DevSecOps in your organization. We2019ll also consider the risk management associated with integrating components from a variety of sources2014another consideration that open source has had since the beginning. Finally, we2019ll show ways by which automation using tools such as Ansible and repeatable trusted delivery of code can be built directly into a DevOps pipeline.