Live at Spring ONUG 2023
Panel with Matt Tesauro and Dan Cornell.
As organizations adopt DevOps practices, the need for “security as code” becomes paramount. This session will explore the concept of integrating security into the software development process, with a focus on how to automate the protection of networks through code. Attendees will learn about the benefits of implementing security as code, including increased speed and efficiency, as well as improved collaboration between security and development teams. We will discuss different tools and techniques for automating security, such as using infrastructure as code, vulnerability scanning and penetration testing. The session will also cover best practices for integrating security as code into the software development lifecycle. We will also discuss how to create a culture of security within the organization to ensure that security is integrated into the entire software development process. Whether you’re a network administrator, developer, or security professional, this session will give you the knowledge and skills you need to take your organization’s security to the next level.
Session Outline:
-Overview of the current state of security in DevOps and the importance of incorporating security into the development process
-Discussion of the challenges and best practices for integrating security into the DevOps process
-Examples of how to automate security testing and implement security controls in code
-Q&A session for attendees to ask questions and discuss specific challenges they are facing in their own organizations
Target Audience:
This session is targeted towards IT professionals, DevOps practitioners, security professionals and managers who are interested in learning more about how to integrate security into the DevOps process and improve the overall security of their organization. Attendees should have a basic understanding of DevOps and security concepts.