The philosophy of integrating security practices within the DevOps value chain that promotes flexible collaboration between software engineers and security teams.