AppSec in a DevOps World

Development teams were already struggling with adding security to their Agile development processes. But now, DevOps teams are pushing to release continuously, meaning integrating security will become even more of a challenge. With DevOps, teams will be expected to produce code faster and more often. Yet in order for DevOps to be successful, teams can’t just deliver functional code – they must deliver secure code. How can DevOps teams add security to DevOps without losing velocity? In this session, Peter Chestna, Director of Developer Engagement, describes the pressures on DevOps teams. He will then practical strategies to integrate security successfully into DevOps.

What you will learn: * Why application security (AppSec) is important * How DevOps is changing application development * How AppSec is traditionally done * What needs to change in order to stay relevant including things to measure as leading indicators of success



Peter Chestna

Pete Chestna has more than 25 years of experience developing software and leading development teams, and has been granted three patents. Pete has been developing web applications since 1996, including ...