Company X values your well-rounded expertise in different aspects of Cybersecurity, the company Director decides to promote you to Software Engineering Manager to take over their Software Engineering team and stand up a Secure DevOps team.
Question 1:
What are the detailed steps you would direct your team Leads to implement a full Security DevOps system which will add security assurance in all phases of the Software development lifecycle in order to decrease the number of vulnerabilities in the software being deployed?
Question 2:
Explain the Capability Maturity Model Integration (CMMI) framework and all its constellations (DEV, ACQ, SRV).