Building Resilient CICD Pipelines: A DevOps Security-First Framework

Building Resilient CICD Pipelines: A DevOps Security-First Framework

연구 분야: Software Development

학회: 2025 International Conference on Computational, Communication and Information Technology (ICCCIT)

Continuous Integration and Continuous Deployment are now integrated in automated systems that enhance code stability, and accelerate the deployment process as well as improving monitoring of the whole system in the software development field. This document deals with setting up of a strong CI/CD process involving AWS cloud services and DevOps. The infrastructure is built with the help of Terraform which ensures the scalability and repeatability applying the Infrastructure as Code (IaC) approach. A safe Virtual Private Cloud (VPC) is designed consisting of public and private subnets, load balancing for traffic distribution, and CloudFront CDN to improve geographical distribution. Jenkins is used in CI process to perform disk analysis, OWASP and Trivy vulnerability scanning, and making Docker images. The CD phase use ArgoCD for updates on Kubernetes and integrates Monitoring and observability using Prometheus and Grafana. Notifications are produced to JIRA and email communication for improvement. With the help of the offered cloud services and DevOps tool it is possible to consolidate the SDLC and bring effects in code safety, testing and utilization. This document also provides an overview of methods, instruments, and outcomes, demonstrating how the CI/CD automation influences the development and operation positively.