For enterprises, it's hard to have a ton of different tools.
I worked at a very large software company, and our security tech stack was so big and convoluted, that just maintaining a compliant CI/CD pipeline was a 5 person job, because there are ~20 different tools to integrate and debug, and each of those changes every year or two, so you're constantly re-learning, re-integrating, debugging,etc.
Having a single (or just a couple) vendor(s) sounds like a dream!
No comments yet.