Cybersecurity needs help from infrastructure and operations (I&O) teams. Threats are evolving faster than ever and becoming increasingly sophisticated. Consumers drive shorter release cycles by development and operations (DevOps) that limit time for security testing. DevOps teams must embrace security to form a development, security, and operations (DevSecOps) team, adding automated testing throughout the build/test/release/run life cycle. In this report, we describe best practices to help I&O pros integrate security while retaining or improving agility.