Securing the Software Development Lifecycle (SDLC) in Cloud Environments: A Dev Sec Ops Perspective

Atharva Dhuri; Krishna Samdani; Shahista Agwan; Shrivardhan Wagh; Yash Karande; Yash Narayan

doi:10.2991/978-94-6463-858-5_224

<Previous Article In Volume

Next Article In Volume>

Securing the Software Development Lifecycle (SDLC) in Cloud Environments: A Dev Sec Ops Perspective

Authors

Atharva Dhuri¹^{, *}, Krishna Samdani¹, Shahista Agwan¹, Shrivardhan Wagh¹, Yash Karande¹, Yash Narayan¹

¹Department of Computer Engineering, SVKM’S NMIMS Mukesh Patel School of Technology Management and Engineering, Mumbai, India

^*Corresponding author. Email: atharvadhuri06@gmail.com

Corresponding Author

Atharva Dhuri

Available Online 4 November 2025.

DOI: 10.2991/978-94-6463-858-5_224 How to use a DOI?
Keywords: DevSecOps; SDLC; Cloud Security; AI; Low code no code
Abstract: There is an increase in the number of security vulnerabilities in Software Development Lifecycle (SDLC) as the practice of cloud computing expands. The main problem with traditional SDLC models is that they often neglect security and this leaves several threats and vulnerabilities uninspected. Our paper studies major cloud breaches, such as the Capital One, T-Mobile, Okta and LastPass. We have researched different risks such as cloud misconfiguration, insecure APIs, third party threats, credential theft, insider threats. We have also studied the use of DevSecOps. Unlike traditional SDLC models, DevSecOps is a model which integrates security at every phase of development in SDLC. We have discussed the future of use of AI and no code low code strategy in cloud software development and analyzed the challenges, advantages, and limitations they bring to the table.
Copyright: © 2025 The Author(s)
Open Access: Open Access This chapter is licensed under the terms of the Creative Commons Attribution-NonCommercial 4.0 International License (http://creativecommons.org/licenses/by-nc/4.0/), which permits any noncommercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made.

Download article (PDF)

<Previous Article In Volume

Next Article In Volume>

Volume Title: Proceedings of International Conference on Computer Science and Communication Engineering (ICCSCE 2025)
Series: Advances in Computer Science Research
Publication Date: 4 November 2025
ISBN: 978-94-6463-858-5
ISSN: 2352-538X
DOI: 10.2991/978-94-6463-858-5_224 How to use a DOI?
Open Access: Open Access This chapter is licensed under the terms of the Creative Commons Attribution-NonCommercial 4.0 International License (http://creativecommons.org/licenses/by-nc/4.0/), which permits any noncommercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made.

Cite this article

ris enw bib

TY  - CONF
AU  - Atharva Dhuri
AU  - Krishna Samdani
AU  - Shahista Agwan
AU  - Shrivardhan Wagh
AU  - Yash Karande
AU  - Yash Narayan
PY  - 2025
DA  - 2025/11/04
TI  - Securing the Software Development Lifecycle (SDLC) in Cloud Environments: A Dev Sec Ops Perspective
BT  - Proceedings of International Conference on Computer Science and Communication Engineering (ICCSCE 2025)
PB  - Atlantis Press
SP  - 2688
EP  - 2702
SN  - 2352-538X
UR  - https://doi.org/10.2991/978-94-6463-858-5_224
DO  - 10.2991/978-94-6463-858-5_224
ID  - Dhuri2025
ER  -

download .riscopy to clipboard