CMOtech India - Technology news for CMOs & marketing decision-makers
India
Indian Edition · 2026

The Ultimate Guide to DevSecOps

A curated Indian edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for DevSecOps.

What to know about DevSecOps

DevSecOps represents the integration of security practices within the DevOps process, aiming to build security into every phase of software development and delivery. This approach helps organisations accelerate development cycles while maintaining strong security and compliance standards.

Exploring recent stories tagged with DevSecOps reveals a dynamic field where AI-driven tools, cloud-native security, and collaboration between development, security, and operations teams are shaping the future of secure software delivery. Topics such as risk management, container and API security, supply chain protection, and the rising importance of observability and automation are frequently discussed.

For readers interested in how organisations are addressing evolving cybersecurity threats while enhancing agility and innovation, the DevSecOps tag offers insights into technology advancements, cultural shifts, and best practices that help teams deliver resilient, secure software faster. Whether you are a developer, security professional, or IT leader, following DevSecOps stories provides valuable perspectives on securing modern software development in an increasingly complex digital landscape.

Indian DevSecOps News

Regional stories with direct local relevance

Analyst Insights

Research and market analysis connected to DevSecOps

Expert Columns

Interviews

Interviews and video coverage from the network

Recent DevSecOps News

NCC Group maps security gaps across AI coding agents
Patching

NCC Group maps security gaps across AI coding agents

Weak default safeguards and uneven sandboxing could leave developers exposed to command execution before workspace trust is granted.

Today

IBM & Red Hat launch Lightwell for open source fixes
Risk & Compliance

IBM & Red Hat launch Lightwell for open source fixes

Enterprises can now patch older open source software without disruptive upgrades, as IBM and Red Hat target stubborn vulnerability backlogs.

Yesterday

XBOW wins AWS application security competency status
Public Cloud

XBOW wins AWS application security competency status

The AWS badge could help XBOW win more enterprise deals as buyers seek continuous testing that shows which vulnerabilities are exploitable.

Yesterday

Hostinger adds Patchstack scans to Node.js hosting
Web applications

Hostinger adds Patchstack scans to Node.js hosting

Developers using AI-generated code on Hostinger's Node.js plans will now get automatic alerts on vulnerable dependencies as apps are scanned in the background.

Yesterday

AI speeds coding but not enterprise software delivery
Productivity

AI speeds coding but not enterprise software delivery

Enterprises risk slower returns from AI as manual approvals and release bottlenecks keep software lead times stuck at 30 to 45 days.

2 days ago

DigiCert launches Quantum Central for post-quantum readiness
Security Operations Centres

DigiCert launches Quantum Central for post-quantum readiness

Security teams gain a free way to map hidden cryptography before quantum threats make current encryption less reliable.

4 days ago

Endava & Wiz partner on AI cloud security services
Managed Services

Endava & Wiz partner on AI cloud security services

Enterprise AI roll-outs will get closer monitoring as Endava adds Wiz tools to spot cloud risks earlier across multi-cloud systems.

Last week

Ory unveils Agent DX for enterprise AI coding agents
App development

Ory unveils Agent DX for enterprise AI coding agents

Developers can now add authentication and access controls earlier in AI-built apps, as Ory's free plugins plug identity tools into coding agents.

Last week

AI-generated code is in production at 44.7% of firms
Chief Technology Officers

AI-generated code is in production at 44.7% of firms

More than half of engineering teams are now using AI to write code, but weak oversight is leaving security, dependency and performance risks in production.

Last week

Dawnguard launches security platform & raises USD $6.3m
Robotics

Dawnguard launches security platform & raises USD $6.3m

North American expansion is now being funded as the startup targets cloud risks introduced at the design stage, not after deployment.

Last week

Asia firms adopt agentic AI faster than resilience
Robotics

Asia firms adopt agentic AI faster than resilience

Recovery plans are lagging as Asian companies rush into agentic AI, with average incident downtime stretching to 28 days, a survey found.

Last week

BeyondTrust launches AI Agent Security beta for endpoints
Chief Information Security Officer

BeyondTrust launches AI Agent Security beta for endpoints

The beta aims to stop unauthorised AI tools on corporate devices from reaching cloud services, repositories and production systems.

Last week

Google Cloud uses AI agents to secure software lifecycle
Chief Information Security Officer

Google Cloud uses AI agents to secure software lifecycle

Its internal security team says automated agents now speed vulnerability checks, patching and production monitoring as attacks intensify.

Last week

Linux Foundation launches Akrites to fix open source flaws
Patching

Linux Foundation launches Akrites to fix open source flaws

Backed by Amazon, Google and Microsoft, the scheme aims to speed fixes for flaws that could ripple through banks, hospitals and power grids.

Last month

Qodo launches governance tools for AI code reviews
Risk & Compliance

Qodo launches governance tools for AI code reviews

AI-generated code is outpacing enterprise review processes, prompting Qodo to add tools that flag cross-repo risks and enforce standards.

Last month

Oracle expands defence ecosystem with 10 new firms
Robotics

Oracle expands defence ecosystem with 10 new firms

Defence buyers could gain faster access to AI, robotics and secure communications as Oracle broadens its programme with 10 more start-ups.

Last month

NCC Group joins OpenAI Daybreak cyber partner programme
Network Infrastructure

NCC Group joins OpenAI Daybreak cyber partner programme

The tie-up gives NCC Group early access to GPT-5.5-Cyber, as OpenAI seeks trusted testers for defensive uses of its cyber tools.

Last month

New Relic launches startup AI observability programme
Digital Transformation

New Relic launches startup AI observability programme

The offer gives early-stage AI startups free monitoring and engineering support as software failures can quickly damage customer trust and funding prospects.

Last month

Dify flaws expose cross-tenant AI data, Zafran says
Patching

Dify flaws expose cross-tenant AI data, Zafran says

Users of Dify's cloud service could have had private chats and files exposed after Zafran Security disclosed four flaws in the AI platform.

Last month

Tsuga raises USD $35 million to expand AI observability
Digital Transformation

Tsuga raises USD $35 million to expand AI observability

Rising AI data volumes are forcing observability vendors to rethink pricing and storage as Tsuga wins fresh backing to keep telemetry in-house.

Last month