Who owns security in the age of DevOps? AppSec is becoming more complex as release frequency increases. Companies are now realizing the importance of making security a key component of their DevOps strategy. As this responsibility shifts from dedicated security silos to development teams, a CI/CD-based strategy that facilitates timely feedback for developers has become essential for continuous security and compliance. This presentation will reflect on WhiteSource's industry report that examines the shifting ownership of security as well as the role that both CI/CD and IDE integrations increasingly play in AppSec.