Discuss how you would implement security in a DevOps environment, including automation and policy enforcement.