ROI
Definition
ROI, or Return on Investment, is a financial metric used to evaluate the efficiency or profitability of an investment. In the context of DevSecOps or application security, ROI can be used to measure the value gained from security investments, such as tools, training, or processes, by comparing the cost of these investments against the reduction in security incidents or breaches.
Secure Settings Example
# Kubernetes PodSecurityContext example for secure settings
apiVersion: v1
kind: Pod
metadata:
name: secure-pod
spec:
securityContext:
runAsNonRoot: true
readOnlyRootFilesystem: true
allowPrivilegeEscalation: false
containers:
- name: secure-container
image: secure-image:latest
securityContext:
capabilities:
drop:
- ALL
Insecure Settings Example
# Kubernetes PodSecurityContext example with insecure settings
apiVersion: v1
kind: Pod
metadata:
name: insecure-pod
spec:
securityContext:
runAsNonRoot: false
readOnlyRootFilesystem: false
allowPrivilegeEscalation: true
containers:
- name: insecure-container
image: insecure-image:latest
securityContext:
capabilities:
add:
- ALL