Mahomedov, K. O.Smyrnov, S. A.2025-10-232025-10-232025Mahomedov, K. O. Information security challenges in an enterprise-grade software development lifecycle / Mahomedov K. O., Smyrnov S. A. // Theoretical and Applied Cybersecurity : Матеріали ІІІ Всеукраїнської науково-практичної конференції (TACS-2025), [Київ], 29 травня 2025 р. / НН ФТІ, КПІ ім. Ігоря Сікорського. - Київ, 2025. - С. 162-166.https://ela.kpi.ua/handle/123456789/76982This study evaluates prominent cybersecurity frameworks and assesses how well they accommodate modern cloud security practices within contemporary SDLCs. Special attention is given to the DevSecOps paradigm, which integrates automated security checks and developer engagement into continuous integration and delivery pipelines, and to SBOMs as a means of exposing and managing third-party component risks in complex supply chains. Finally, the study identifies gaps in standardized maturity metrics, adaptive security controls for dynamic cloud environments, and empirical understanding of the human factors that sustain long-term security practices.enSDLCDevSecOpsSBOMscybersecurity maturity modelscloud securityArticleС. 162-166