Shift Left, Shift Right: The DevSecOps Hokey Pokey
|
Garrett Gross, a Rapid7 Technical Advisor for Application Security, and Alyssa Miller, a Snyk Application Security advocate, come together to share how application security is evolving.
Garrett Gross, a Rapid7 Technical Advisor for Application Security, and Alyssa Miller, a Snyk Application Security advocate, come together to share how application security is evolving. You constantly hear about security shifting left in the SDLC, but what about development pushing right as teams continue to deploy apps using cloud and container technologies? In order for modern day application security programs to achieve success, there is a need for shared responsibility across development, security, and operations teams. By integrating security earlier with a developer-centric mindset, development teams can trust that their ops and security peers share in their mission to release good software, fast.
Author Name: DevSecCon
Author Description:
DevSecCon is the global community dedicated to DevSecOps to help implement security in the overall development process. If you’re a security enthusiast & you want to learn more about how to better secure your team, then check out our community & resources.
User Reviews
Be the first to review “Shift Left, Shift Right: The DevSecOps Hokey Pokey”
Related Products
Introduction to Security Champion for Developers
A security champion is someone who acts as the de facto expert in security for their team. This course will cover how to use this path to increase your security knowledge, why it’s relevant to developers and how to become a security champion.
Implementing and Managing GitHub for DevSecOps
In this course, you will learn how the GitHub platform can help with implementing DevSecOps practices.
Secure Software Supply Chain for CSSLP®
This course will teach you to identify, assess, and mitigate the risk associated with the software supply chain needed for the Certified Secure Software Lifecycle Professional examination.
TorchServe Vulnerabilities: What You Should Know
Q&A session discussing the TorchServe Vulnerabilities (ShellTorch), covering Remote Access, CVE-2023-43654, and CVE-2022-1471.
Exam Review Tips and Tricks for CySA+
Achieving a passing score on the CySA+ exam requires knowledge, experience, and preparation. This course will teach you the steps to be successful for the CySA+ exam.
IT Security Champion: Pen Tests
This course will provide a brief overview of how a security pen test is used to discover systems which may be compromised by an unauthorized hacker.
There are no reviews yet.