How we do software development have been evolving. This is not just because we no longer have to worry about maintaining clunky on-prem servers and can instead write serverless applications and push code to a cloud service like AWS or Azure. How we collaborate with other developers, plan, and schedule work has been changing as well. As more companies are adopting new technologies, so are they making agile the default methodology for getting work done, even if agile means something slightly different to everybody. However, despite all the talk about DevOps and agile, most security teams of any size are still operating in the same waterfall fashion.