The move to development, security and operations

In order to meet Accenture’s growing business needs, the company is shifting to a new way of delivering information technology. This internal transformation focuses on optimizing the collaboration between development and operations, while embedding security into the entire process. Development, Security and Operations (DevSecOps) converges application development, security, infrastructure as code, and operations into a continuous, end-to-end, highly automated delivery cycle.

Strategy and Solution

Embracing DevSecOps

Accenture has begun the process of merging application development, security, infrastructure as code, and operations into a continuous, end-to-end, highly automated delivery cycle. This will enable more agility, higher quality and more time spent on innovation through a culture, process and technology model.

While this is just the beginning of a multi-year journey, shifting to DevSecOps aims to replace administrative efforts in delivery and operations, allowing teams to be more agile and engage in more interesting design and solution work within Accenture. For internal IT, this is the next phase of building on prior phases of maturing development, operations and automation capabilities.

Year one

The early stages of shifting to DevSecOps require focusing on defining the vision and laying the road map of moving development and operations capabilities into the New. Internal IT’s vision of DevSecOps is to provide a consumable, seamless, automated process that ensures compliant delivery within Accenture guidelines.

In order to deliver more capability to the business more quickly, internal IT has taken four main steps:

  • Defining the outcome and vision of DevSecOps in a measurable and objective way.
  • Assessing Accenture’s platform and delivery teams’ ability to move to the DevSecOps model.
  • Building technical enablers and automation.
  • Piloting teams to run in a DevSecOps model versus the old model of development separated from internal IT Operations.

The DevSecOps difference

The delivery and maintenance of internal IT’s DevSecOps capabilities are being transformed through processes, tools and a significant cultural change. Teams are transitioning from siloed development and formal hand-offs of code to operations to transitioning to be service-oriented, involving having accountability for end-to-end delivery of a service. This new model is often described as a “you build it, you run it” and “I own the service, it’s my business” type of approach.


Foundational principles for delivery

DevSecOps relies on two principles for delivery, tapping into Accenture’s internal IT vision for IT in the platform economy. This creates a model where new capability is brokered as a service rather than planned and delivered in legacy form.

Agile delivery

Allows teams and organizations to run hypothesis-driven development before investing large amounts of time and money.

Extreme automation

Directly enables the agility and quality goals of the vision by replacing administrative and manual work.

View All

Performance shift in agility, quality and culture

DevSecOps is an enabler that delivers automation, repeatability, agility, security and speed across the entire life cycle, and internal IT is aiming to perform DevSecOps at Accenture’s complexity and scale–in contrast to how it typically is performed at small scale.

Over the next several years, internal IT will be focusing on significantly shifting performance in the key areas of agility, quality and culture. This includes:

  • Increasing the number of deployments per day
  • Further decreasing change failure rate
  • Enabling teams with end-to-end autonomy

These shifts in performance and culture will lead to the goal of transforming the delivery of internal IT’s DevSecOps capabilities is to drive increased value for Accenture resulting in faster delivery, improved quality and more innovation.

Meet the team

Subscription Center
Stay in the Know with Our Newsletter Stay in the Know with Our Newsletter