Sorry, no proposals found under this section.
 
  • Liked Peter Chestna
    keyboard_arrow_down

    AppSec in a DevOps World

    Peter Chestna
    Peter Chestna
    schedule 3 weeks ago
    Sold Out!
    20 mins
    Talk
    Intermediate

    Security has typically been done at the end of the development cycle if it’s done at all. This has all of the same side effects as testing quality just before shipping namely surfacing work and risk at the worst possible time. DevOps is forcing development teams to re-think their accountability. Not only are they responsible for functional quality but now they must also operationalize their software. I assert that they should also be accountable for security. Software written without security in mind opens a company up to brand damage and the costs associated with breaches. This will reflect directly on the teams that built the software.

    How can DevOps teams add security to DevOps without losing velocity? In this session, Peter Chestna, Director of Developer Engagement, discusses how security is typically bolted on to the development process as well as the pressures on DevOps teams. He will then provide practical strategies to integrate security successfully into the SDLC while maintaining the velocity necessary to realize the benefits of DevOps.

    What you will learn:      

    1. Why application security (AppSec) is important
    2. How AppSec is traditionally done
    3. How to do security in DevOps while maintaining velocity
    4. What to measure as leading indicators of success