Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Shifting Left Securely
Search
Matt Stratton
April 28, 2016
Technology
0
200
Shifting Left Securely
Matt Stratton
April 28, 2016
Tweet
Share
More Decks by Matt Stratton
See All by Matt Stratton
Talk Selection As Mockumentary Film Editing
mattstratton
0
57
How Do You Infect Your Organization With Humane Ops?
mattstratton
0
150
Incidents and Accidents
mattstratton
0
180
Everything Is A Product - How To Apply Product Management Practices to Technology Services
mattstratton
0
870
The Handwaver's Guide to Contributing To Open Source - ChefConf 2017
mattstratton
0
600
Shifting Left Securely - DevOpsDays Denver 2017 Edition
mattstratton
0
920
Making Infrastructure S'mores With Chef (ThatConference edition)
mattstratton
0
580
Making Infrastructure S'mores With Chef (KC DevOps edition)
mattstratton
0
81
The Five Love Languages of DevOps
mattstratton
2
160
Other Decks in Technology
See All in Technology
Observability — Extending Into Incident Response
nari_ex
1
510
Behind Postgres 18: The People, the Code, & the Invisible Work | Claire Giordano | PGConfEU 2025
clairegiordano
0
140
だいたい分かった気になる 『SREの知識地図』 / introduction-to-sre-knowledge-map-book
katsuhisa91
PRO
3
1.4k
ハノーファーメッセ2025で見た生成AI活用ユースケース.pdf
hamadakoji
1
480
Oracle Base Database Service 技術詳細
oracle4engineer
PRO
14
82k
abema-trace-sampling-observability-cost-optimization
tetsuya28
0
110
SRE × マネジメントレイヤーが挑戦した組織・会社のオブザーバビリティ改革 ― ビジネス価値と信頼性を両立するリアルな挑戦
coconala_engineer
0
270
Biz職でもDifyでできる! 「触らないAIワークフロー」を実現する方法
igarashikana
7
3.5k
AI機能プロジェクト炎上の 3つのしくじりと学び
nakawai
0
120
RemoteFunctionを使ったコロケーション
mkazutaka
1
120
[読書]AWSゲームブック〜GuardDuty魔神とインシデント対応の旅〜DevIO2025
cmusudakeisuke
0
200
もう外には出ない。より快適なフルリモート環境を目指して
mottyzzz
13
11k
Featured
See All Featured
Build your cross-platform service in a week with App Engine
jlugia
233
18k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
34
2.3k
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
Become a Pro
speakerdeck
PRO
29
5.6k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
49
3.1k
Why You Should Never Use an ORM
jnunemaker
PRO
59
9.6k
What's in a price? How to price your products and services
michaelherold
246
12k
We Have a Design System, Now What?
morganepeng
53
7.8k
Unsuck your backbone
ammeep
671
58k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
27k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
35
3.2k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
36
6.1k
Transcript
SHIFTING LEFT SECURELY
WHOAMI
QUALITY AND INNOVATION HISTORICALLY, A TRADEOFF
None
None
None
None
None
None
None
None
None
VERSIONED MODULARIZED TESTED
HOW DOES THIS HELP ME WITH SECURITY?
None
None
None
None
TO REVIEW > Treat your pipeline as code > Trust
(but verify) your domain experts > Share the cooking > Use your production audit tests in your pipeline > Did I mention test?
QUESTIONS?
RESOURCES > Sidney Dekker - Field Guide to Human Error
> github.com/mattstratton/shift-left-securely > twitter.com/mattstratton > speakerdeck.com/mattstratton > arresteddevops.com