Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
DevSecOps - Vom Unikum zur gut geölten Maschine
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
Nicolas Byl
December 08, 2021
Technology
120
0
Share
DevSecOps - Vom Unikum zur gut geölten Maschine
Nicolas Byl
December 08, 2021
More Decks by Nicolas Byl
See All by Nicolas Byl
Platform Engineering ❤️ Developer Experience
nbyl
0
45
Die Flucht aus der Prototypen-Hölle
nbyl
0
52
Lean Prototyping for Industrial-IoT Projects
nbyl
0
71
Securing your software supply chain
nbyl
0
380
Keeping-Up-WithUpstream.pdf
nbyl
0
180
Dr. Kube und der Helm - Anatomie einer CD-Pipeline
nbyl
0
150
Securing the "other" supply chain
nbyl
0
310
Kubernetes - Auf die Cluster, Fertig, Los!
nbyl
0
210
Helm - Kubernetes Deployments richtig gemacht
nbyl
0
140
Other Decks in Technology
See All in Technology
Discordでリモートポケカしてたら、なぜかDOを25分間動かせるようになった話
umireon
0
130
AgentCore RuntimeからS3 Filesをマウントしてみる
har1101
4
430
OBI+APMでお手軽にアプリケーションのオブザーバビリティを手に入れよう
kenshimuto
0
290
研究開発部メンバーの働き⽅ / Sansan R&D Profile
sansan33
PRO
4
23k
数案件を同時に進行するためのコンテキスト整理術
sutetotanuki
2
240
Sansan Engineering Unit 紹介資料
sansan33
PRO
1
4.2k
🀄️ on swiftc
giginet
PRO
0
350
Zero-Downtime Migration: Moving a Massive, Historic iOS App from CocoaPods to SPM and Tuist without Stopping Feature Delivery
kagemiku
0
240
AI前提とはどういうことか
daisuketakeda
0
190
All About Sansan – for New Global Engineers
sansan33
PRO
1
1.4k
Introduction to Sansan for Engineers / エンジニア向け会社紹介
sansan33
PRO
6
74k
"SQLは書けません"から始まる データドリブン
kubell_hr
2
410
Featured
See All Featured
Designing for Timeless Needs
cassininazir
0
190
Navigating Weather and Climate Data
rabernat
0
160
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.7k
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
Discover your Explorer Soul
emna__ayadi
2
1.1k
Neural Spatial Audio Processing for Sound Field Analysis and Control
skoyamalab
0
250
Navigating Algorithm Shifts & AI Overviews - #SMXNext
aleyda
1
1.2k
A better future with KSS
kneath
240
18k
How GitHub (no longer) Works
holman
316
150k
Side Projects
sachag
455
43k
Being A Developer After 40
akosma
91
590k
The Curious Case for Waylosing
cassininazir
0
300
Transcript
1 NICOLAS BYL DEVSECOPS VOM UNIKUM ZUR GUT GEÖLTEN MASCHINE
2 INTRODUCTION
3 THE DEVSECOPS CYCLE
4 THE CASTLE ILLUSION
5 THE DEVSECOPS CYCLE
6 THE DEVSECOPS CYCLE
7 SECURE ARCHITECTURE
8 THREAT MODELLING
9 COMPLIANCE
10 PENTESTS
11 THE DEVSECOPS CYCLE
12 DESIGN PATTERNS
13 PRE-COMMIT HOOKS
14 CODE REVIEWS
15 COMMIT SIGNING
16 THE DEVSECOPS CYCLE
17 THE DEPENDENCY ICEBERG
18 AUTOMATION IS KING SOURCE CODE ANALYSIS • FindBugs •
SonarQube • SAST • DAST SOURCE CODE ANALYSIS DEPENDENCY ANALYSIS • Maven, npm, ... • Container Images • Operating System Packages UPDATE AUTOMATION • npm audit • Dependabot • Renovate
19 THE DEVSECOPS CYCLE
20 POLICY OVER CHECKLISTS
21 THE KEY TO THE KINGDOM
22 ZERO-TRUST DEPLOYMENT
23 ROLLER COASTER PASSWORDS
24 INVENTORY SCANS
25 FIRE DRILLS & CHAOS ENGINEERING
26 HOW TO GET IN TOUCH
[email protected]
@ClusterBauer https://www.nexineer.io/career/ WE
ARE ALWAYS LOOKING FOR GREAT COLLEAGUES…
27 PATCHING Sicheres Artefakt Artefakt mit bekannter Schwachstelle Scanning Patching
nbyl
umireon
har1101
kenshimuto
sansan33
sutetotanuki
giginet
kagemiku
daisuketakeda
kubell_hr
cassininazir
rabernat
thoeni
aarron
emna__ayadi
skoyamalab
aleyda
kneath
holman
sachag
akosma
![26 HOW TO GET IN TOUCH [email protected] @ClusterBauer https://www.nexineer.io/career/ WE](https://files.speakerdeck.com/presentations/bc9481b009f54a0aac7900020fe93776/slide_25.jpg){kind=link}
