From Theory to Practice: How to Make DevSecOps Work in Your Organization