About this Talk The AppSec programs of today are vastly different than they were, say, 10 years ago. A strong AppSec program requires proactive attention, and this is true for organizations developing their own software as well as those using products developed by third parties. No matter whether your organization… Read More »How to Start and Mature your App Sec Program
About this Talk Within this presentation, I will explore strategies in which organizations with varying needs and goals can achieve DevSecOps successfully. While sometimes organizational expectations exceed what is currently available in the market, I will also be sharing real-world examples of how organizational expectations were met with out-of-the-box solutions… Read More »The Vulnerability Deluge: How to Dig In @ DevSecOps Days Boston
About this Talk Organizations have increased their reliance on digital tools and interfaces, and they are quickly ramping up their security posture as well. 2020 showed that malicious actors haven’t stopped attacking—in fact the attacks have broadened to focus on both direct and indirect targets like the supply chain or… Read More »The Vulnerability Deluge: How to Dig In @ BSides Nova
About this Talk DevSecOps is the practice of integrating security into every stage of the DevOps pipeline. It unites development activities, operations support, and security checks, and coordinates the teams involved in the software development life cycle (SDLC). The synergy between the teams is helped by automation. But DevSecOps isn’t… Read More »DevSecOps – Good, Bad & Ugly @ BSides Vancouver
About this Talk The IT world, and the IT security space in particular, is filled with buzzwords like DevOps, SecOps, DevSecOps, CI/CD and so on. Everyone wonders where security comes into the picture. Why should security fit into the process and how can it (or how should it) fit in… Read More »DevSecOps – Good, Bad & Ugly @ BSides CT
