CFP last date
21 April 2025
Call for Paper
May Edition
IJCA solicits high quality original research papers for the upcoming May edition of the journal. The last date of research paper submission is 21 April 2025

Submit your paper
Know more
The week's pick
Responsive image
Design and Implementation of Wyltl: An Imperative, Embeddable and Portable Programming Language

Dineth Mallawarachchi Yasas Jayaweera
Random Articles
Reseach Article

Compliance and Governance: Address the Role of Devops in Maintaining Compliance and Ensuring Governance throughout the Development Lifecycle

by Lakshmi Prasad Rongali
journal cover thumbnail

International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
Volume 186 - Number 76
Year of Publication: 2025
Authors: Lakshmi Prasad Rongali
10.5120/ijca2025924654

Lakshmi Prasad Rongali . Compliance and Governance: Address the Role of Devops in Maintaining Compliance and Ensuring Governance throughout the Development Lifecycle. International Journal of Computer Applications. 186, 76 ( Apr 2025), 16-21. DOI=10.5120/ijca2025924654

@article{ 10.5120/ijca2025924654,
author = { Lakshmi Prasad Rongali },
title = { Compliance and Governance: Address the Role of Devops in Maintaining Compliance and Ensuring Governance throughout the Development Lifecycle },
journal = { International Journal of Computer Applications },
issue_date = { Apr 2025 },
volume = { 186 },
number = { 76 },
month = { Apr },
year = { 2025 },
issn = { 0975-8887 },
pages = { 16-21 },
numpages = {9},
url = { https://ijcaonline.org/archives/volume186/number76/compliance-and-governance-address-the-role-of-devops-in-maintaining-compliance-and-ensuring-governance-throughout-the-development-lifecycle/ },
doi = { 10.5120/ijca2025924654 },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Journal Article
%1 2025-04-01T14:54:54.002134+05:30
%A Lakshmi Prasad Rongali
%T Compliance and Governance: Address the Role of Devops in Maintaining Compliance and Ensuring Governance throughout the Development Lifecycle
%J International Journal of Computer Applications
%@ 0975-8887
%V 186
%N 76
%P 16-21
%D 2025
%I Foundation of Computer Science (FCS), NY, USA
Abstract

The research evaluates the significant role of DevOps in managing compliance and also governance within the software development lifecycle. It evaluates CI/CD, automation, as well as the Infrastructure as Code (IaC) as significant enablers of regulatory adherence. The research recognizes issues involving the deficiency of the compliance expertise, and enhanced regulations, alongside team misalignment in featuring best practices involving compliance-as-code, continuous tracking, and automated policy integration. In addition to that, it defines AI-associated compliance tools alongside adequate governance frameworks as future approaches. The specific organizations can improve overall security, mitigate risks, alongside manage regulatory adherence through incorporating compliance adequately into the specific DevOps workflows.

References
  1. Vangala, V., 2025. DevSecOps: Integrating Security into the DevOps Lifecycle.
  2. Tatineni, S., 2023. Compliance and Audit Challenges in DevOps: A Security Perspective. International Research Journal of Modernization in Engineering Technology and Science, 5(10), pp.1306-1316.
  3. Ugwueze, V.U. and Chukwunweike, J.N., 2024. Continuous integration and deployment strategies for streamlined DevOps in software engineering and application delivery. Int J Comput Appl Technol Res, 14(1), pp.1-24.
  4. Chukwurah, N., Ige, A.B., Idemudia, C. and Eyieyien, O.G., 2024. Integrating agile methodologies into data governance: Achieving flexibility and control simultaneously. Open Access Research Journal of Multidisciplinary Studies, 8(01), pp.045-056.
  5. Vakhula, O., Kurii, Y., Opirskyy, I. and Susukailo, V., 2024. Security as Code Concept for Fulfilling ISO/IEC 27001: 2022 Requirements. In CPITS (pp. 59-72).
  6. Doukari, O., Greenwood, D., Rogage, K. and Kassem, M., 2022. Object-centred automated compliance checking: A novel, bottom-up approach. Journal of Information Technology in Construction, 27, pp.335-362.
  7. Lamponen, N., 2021. Implementation of secure workflow for DevOps from best practices viewpoint.
  8. Khan, M.S., Khan, A.W., Khan, F., Khan, M.A. and Whangbo, T.K., 2022. Critical challenges to adopt
  9. DevOps culture in software organizations: A systematic review. Ieee Access, 10, pp.14339-14349.
  10. Jiutian, Z., Zhiyong, W., Jia-Ning, K., Xiangjing, S. and Dong, X., 2022. Several key issues for CCUS development in China targeting carbon neutrality. Carbon Neutrality, 1(1), p.17.
  11. Ramaj, X., Sánchez-Gordón, M., Gkioulos, V., Chockalingam, S. and Colomo-Palacios, R., 2022. Holding on to compliance while adopting DevSecOps: an SLR. Electronics, 11(22), p.3707.
  12. Aljohani, A., 2023. Predictive analytics and machine learning for real-time supply chain risk mitigation and agility. Sustainability, 15(20), p.15088.
  13. Beyene, M., Toussaint, P.A., Thiebes, S., Schlesner, M., Brors, B. and Sunyaev, A., 2022. A scoping review of distributed ledger technology in genomics: thematic analysis and directions for future research. Journal of the American Medical Informatics Association, 29(8), pp.1433-1444.
  14. Mökander, J., 2023. Ethics-based auditing of automated decision-making systems: considerations, challenges, na (Doctoral dissertation, University of Oxford).
  15. Dawar, G. and Singh, S., 2023. Barriers to corporate social responsibility implementation in the medium size manufacturing sector: an interpretive structure modelling approach. Journal of Entrepreneurship in Emerging Economies, 15(2), pp.447-479.
  16. Tatineni, S., 2023. Compliance and Audit Challenges in DevOps: A Security Perspective. International Research Journal of Modernization in Engineering Technology and Science, 5(10), pp.1306-1316.
  17. Bieger, V., 2023. A decision support framework for multi-cloud service composition (Master's thesis).
  18. Allam, A.R., 2023. Enhancing Cybersecurity in Distributed Systems: DevOps Approaches for Proactive Threat Detection. Silicon Valley Tech Review, 2(1), pp.54-66.
  19. de Almeida, P.G.R., dos Santos, C.D. and Farias, J.S., 2021. Artificial intelligence regulation: a framework for governance. Ethics and Information Technology, 23(3), pp.505-525.
  20. Bafana, M. and Abdulaziz, A., 2024. DevSecOps in AWS: Embedding Security into the Heart of DevOps Practices. Asian American Research Letters Journal, 1(1).
  21. Folorunso, A., Wada, I., Samuel, B. and Mohammed, V., 2024. Security compliance and its implication for cybersecurity. World Journal of Advanced Research and Reviews, 24(01), pp.2105-2121.
  22. Saha, R., 2024. Data Privacy and Cyber Security in Digital Library Perspective: Safe Guarding User Information.
  23. Hassan, M., Aziz, L.A.R. and Andriansyah, Y., 2023. The role artificial intelligence in modern banking: an exploration of AI-driven approaches for enhanced fraud prevention, risk management, and regulatory compliance. Reviews of Contemporary Business Analytics, 6(1), pp.110-132.
  24. Rangaraju, S., Ness, S. and Dharmalingam, R., 2023. Incorporating AI-Driven Strategies in DevSecOps for Robust Cloud Security. International Journal of Innovative Science and Research Technology, 8(23592365), pp.10-5281.
  25. Moeez, M., Mahmood, R., Asif, H., Iqbal, M.W., Hamid, K., Ali, U. and Khan, N., 2024. Comprehensive Analysis of DevOps: Integration, Automation, Collaboration, and Continuous Delivery. Bulletin of Business and Economics (BBE), 13(1).
  26. Qureshi, J.N., Farooq, M.S., Ali, U., Khelifi, A. and Atal, Z., 2024. Exploring the Integration of Blockchain and Distributed DevOps for Secure, Transparent, and Traceable Software Development. IEEE Access.
Index Terms

Computer Science
Information Sciences
Deployment
Automation
Traditional Compliance
Regulatory Adherence

Keywords

Continuous Integration Governance Compliance Automated policy Workflow Tracking Infrastructure as Code (IaC)

Powered by PhDFocusTM