Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevSecOps - Vom Unikum zur gut geölten Maschine

Avatar for Nicolas Byl Nicolas Byl
December 08, 2021
Technology
0
100

DevSecOps - Vom Unikum zur gut geölten Maschine

Avatar for Nicolas Byl

Nicolas Byl

December 08, 2021
Tweet

More Decks by Nicolas Byl

See All by Nicolas Byl
Platform Engineering ❤️ Developer Experience
Avatar for Nicolas Byl nbyl
0
13
Die Flucht aus der Prototypen-Hölle
Avatar for Nicolas Byl nbyl
0
43
Lean Prototyping for Industrial-IoT Projects
Avatar for Nicolas Byl nbyl
0
44
Securing your software supply chain
Avatar for Nicolas Byl nbyl
0
370
Keeping-Up-WithUpstream.pdf
Avatar for Nicolas Byl nbyl
0
160
Dr. Kube und der Helm - Anatomie einer CD-Pipeline
Avatar for Nicolas Byl nbyl
0
120
Securing the "other" supply chain
Avatar for Nicolas Byl nbyl
0
270
Kubernetes - Auf die Cluster, Fertig, Los!
Avatar for Nicolas Byl nbyl
0
190
Helm - Kubernetes Deployments richtig gemacht
Avatar for Nicolas Byl nbyl
0
130

Other Decks in Technology

See All in Technology
知覚とデザイン
Avatar for Rinchoku rinchoku
1
620
NLPコロキウム20251022_超効率化への挑戦: LLM 1bit量子化のロードマップ
Avatar for Yuma Ichikawa yumaichikawa
3
550
webpack依存からの脱却!快適フロントエンド開発をViteで実現する #vuefes
Avatar for 弁護士ドットコム bengo4com
4
3.6k
AWS DMS で SQL Server を移行してみた/aws-dms-sql-server-migration
Avatar for emi emiki
0
260
GraphRAG グラフDBを使ったLLM生成(自作漫画DBを用いた具体例を用いて)
Avatar for sea-turt1e seaturt1e
1
160
AI時代、“平均値”ではいられない
Avatar for uhyo uhyo
8
2.7k
Okta Identity Governanceで実現する最小権限の原則
Avatar for 株式会社出前館 demaecan
0
190
AIプロダクトのプロンプト実践テクニック / Practical Techniques for AI Product Prompts
Avatar for Jumpei Sakatsu saka2jp
0
120
頭部ふわふわ浄酔器
Avatar for uyupun uyupun
0
230
Kubernetes self-healing of your workload
Avatar for Hung-Wei Chiu hwchiu
1
610
Open Table Format (OTF) が必要になった背景とその機能 (2025.10.28)
Avatar for Akira Shimosako simosako
2
400
コンパウンド組織のCRE #cre_meetup
Avatar for LayerX layerx
PRO
1
280

Featured

See All Featured
Embracing the Ebb and Flow
Avatar for Simon Collison colly
88
4.9k
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
431
66k
Thoughts on Productivity
Avatar for Jon Yablonski jonyablonski
71
4.9k
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
97
6.3k
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
220k
Side Projects
Avatar for Sacha Greif sachag
455
43k
Learning to Love Humans: Emotional Interface Design
Avatar for Aarron Walter aarron
274
41k
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
16
1.7k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
29
5.6k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
116
20k
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
49
51k

Transcript

  1. 1 NICOLAS BYL DEVSECOPS VOM UNIKUM ZUR GUT GEÖLTEN MASCHINE

  2. 2 INTRODUCTION

  3. 3 THE DEVSECOPS CYCLE

  4. 4 THE CASTLE ILLUSION

  5. 5 THE DEVSECOPS CYCLE

  6. 6 THE DEVSECOPS CYCLE

  7. 7 SECURE ARCHITECTURE

  8. 8 THREAT MODELLING

  9. 9 COMPLIANCE

  10. 10 PENTESTS

  11. 11 THE DEVSECOPS CYCLE

  12. 12 DESIGN PATTERNS

  13. 13 PRE-COMMIT HOOKS

  14. 14 CODE REVIEWS

  15. 15 COMMIT SIGNING

  16. 16 THE DEVSECOPS CYCLE

  17. 17 THE DEPENDENCY ICEBERG

  18. 18 AUTOMATION IS KING SOURCE CODE ANALYSIS • FindBugs •

    SonarQube • SAST • DAST SOURCE CODE ANALYSIS DEPENDENCY ANALYSIS • Maven, npm, ... • Container Images • Operating System Packages UPDATE AUTOMATION • npm audit • Dependabot • Renovate

  19. 19 THE DEVSECOPS CYCLE

  20. 20 POLICY OVER CHECKLISTS

  21. 21 THE KEY TO THE KINGDOM

  22. 22 ZERO-TRUST DEPLOYMENT

  23. 23 ROLLER COASTER PASSWORDS

  24. 24 INVENTORY SCANS

  25. 25 FIRE DRILLS & CHAOS ENGINEERING

  26. 26 HOW TO GET IN TOUCH [email protected] @ClusterBauer https://www.nexineer.io/career/ WE

    ARE ALWAYS LOOKING FOR GREAT COLLEAGUES…

  27. 27 PATCHING Sicheres Artefakt Artefakt mit bekannter Schwachstelle Scanning Patching