This thesis's main objective is the design, implementation, and demonstration of a forensic-aware DevSecOps pipeline, blending proactive DevSecOps practices with reactive forensic analysis capabilities. While existing DevSecOps approaches emphasize early vulnerability detection and the adoption of automation across the software development lifecycle, they sometimes neglect the strong forensic capabilities that are critical to successful post-incident investigations and precise threat attribution. Digital forensic analysis, on the other hand, provides powerful investigative tools, but it exists mostly in reactive cases, often in silos. This work seeks to bridge this gap by making forensic readiness an integral part of the CI/CD pipeline. The pipeline is designed by integrating cutting-edge forensic-ready elements, such as Splunk for centralized log collection, Falco for runtime threat detection in real time, and the Malware Information Sharing Platform (MISP) for threat intelligence correlation and Indicators of Compromise (IoC) identification.