Security vs Developers: How to Make DevSecOps Work Together