Continuous Delivery and DevSecOps are currently turning the IT market upside down. They enable organisations to deliver their products faster and more often. To enable the needed pace of development, all steps along the IT value chain have to be reorganised and automated.

Far too often, people tend to forget that changing for these paradigms also requires a change of the corporate modus operandi. Following that, we tend to use settled “best practices” in every place and rely on the principle of hope for the rest.

There is no explanation for disguising InfoSec/Security as Compliance by “passing the buck”. When it comes to license management, everyone involved, discovers his inner ostrich. When migrating to the cloud, we lift and shift instead of refactoring applications in reasonable ways. Everybody is chasing the phantom of cloud neutrality.

In this talk we are pointing out where the principle of hope is currently reigning the IT landscape. We pinpoint a way on how to tackle these problems.