About this Talk
The IT world, and the IT security space in particular, is filled with buzzwords like DevOps, SecOps, DevSecOps, CI/CD and so on. Everyone wonders where security comes into the picture. Why should security fit into the process and how can it (or how should it) fit in at all without slowing time to market?
In this presentation, I will introduce the audience to the world of DevSecOps, navigating attendees through the basics and key terminology. Next, we’ll move into an exploration around the value offered by DevSecOps, the potential challenges in its implementation and the common misgivings when it comes to expectations versus reality. With real-world implementation examples, I aim to enable the audience in their understanding around the advantages and disadvantages (though presenting a smaller subset) in implementing DevSecOps, and more importantly the urgent need for its implementation in today’s software-driven world. Nivedita Murthy is a senior security consultant at Synopsys. She has been in the AppSec field for 12 years and has been wading through the DevSecOps world for past 3 years. Before diving into the emerging DevSecOps space, she dabbled primarily in source code reviews, pen testing, vulnerability management and information security policy implementation for Synopsys customers.