starts in 10 seconds
Caroline Wong – Pentesting at Scale

Caroline Wong – Pentesting at Scale

Pentesting is critical for DevSecOps. Finding and fixing security vulnerabilities is fundamental to building robust software. But how do you build in proactive, preventative measures when you’re strapped for money, talent and guidance? In this talk, Caroline will share a brief history of pentesting, its importance in the SDLC and how to actually achieve pentesting at scale.

Share some ❤
Guest(s): Caroline Wong

Caroline Wong

Cloud-Native & Pentesting - Caroline Wong, Cobalt

Cloud-Native & Pentesting - Caroline Wong, Cobalt

C. O'Hanlon, J. Minella, C. Wong, L. Plaggemier, Why Diversity Matters in Cybersecurity - Techstrong Con 2022

C. O'Hanlon, J. Minella, C. Wong, L. Plaggemier, Why Diversity Matters in Cybersecurity - Techstrong Con 2022

The Future of Security: It's Not All Doom and Gloom

The Future of Security: It's Not All Doom and Gloom

TechStrong TV - April 12, 2022

TechStrong TV - April 12, 2022

SBOMs for DevOps - Devops Unbound EP 26

SBOMs for DevOps - Devops Unbound EP 26

The PtaaS Book - Caroline Wong, Cobalt

The PtaaS Book - Caroline Wong, Cobalt

TechStrong TV - March 1, 2022

TechStrong TV - March 1, 2022

How DevOps has Changed Testing Forever - DevOps Unbound EP 16

How DevOps has Changed Testing Forever - DevOps Unbound EP 16

TechStrong TV - July 13, 2021

TechStrong TV - July 13, 2021

TechStrong TV - June 22, 2021

TechStrong TV - June 22, 2021

Why Testing is so Frustrating - DevOps Unbound EP 15

Why Testing is so Frustrating - DevOps Unbound EP 15

Security Cloud Native - Caroline Wong, Cobalt

Security Cloud Native - Caroline Wong, Cobalt

TechStrong TV - May 18, 2021

TechStrong TV - May 18, 2021

TechStrong TV - February 25, 2021

TechStrong TV - February 25, 2021

TechStrong TV - December 7, 2020

TechStrong TV - December 7, 2020

DevSecOps and AppSec - Devops Unbound EP 2

DevSecOps and AppSec - Devops Unbound EP 2

Caroline Wong - TechStrong TV

Caroline Wong - TechStrong TV

TechStrong TV - August 20, 2020

TechStrong TV - August 20, 2020

Caroline Wong - TechStrong TV

Caroline Wong - TechStrong TV

TechStrong TV - June 9, 2020

TechStrong TV - June 9, 2020

Caroline Wong - TechStrong TV

Caroline Wong - TechStrong TV

Panel: DevSecOps in the Finance Industry

Panel: DevSecOps in the Finance Industry

2022 DevSecOps Days

Jennifer Czaplewski - DevSecOps at Target

Jennifer Czaplewski - DevSecOps at Target

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Dan Shugrue & Cole Herzog - How to Build a Blueprint for Secure Software

Dan Shugrue & Cole Herzog - How to Build a Blueprint for Secure Software

Robert Sirchia - Open Zero-Trust

Robert Sirchia - Open Zero-Trust

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Jim Zemlin - 10 Streams of Investment for Open Source Security

Jim Zemlin - 10 Streams of Investment for Open Source Security

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Guy Gil - Reaping the Benefits of Your Dependencies

Guy Gil - Reaping the Benefits of Your Dependencies

Adam Such - What DevSecOps can learn from Elon Musk

Adam Such - What DevSecOps can learn from Elon Musk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

John Willis - Out of the Crisis - What Would Deming Do?

John Willis - Out of the Crisis - What Would Deming Do?

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Alan Shimel - 2022 DevSecOps Days Opening

Alan Shimel - 2022 DevSecOps Days Opening

Chenxi Wang, PH.D - Software Supply Chain Security: Buzzwords or A Sustainable Market?

Chenxi Wang, PH.D - Software Supply Chain Security: Buzzwords or A Sustainable Market?

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

The Security Policy and Standards Landscape is Changing – What Developers Need to Know

The Security Policy and Standards Landscape is Changing – What Developers Need to Know

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Mitch Ashley - The Rise of API Security: It’s 10pm—Do You Know Where Your APIs Are?

Mitch Ashley - The Rise of API Security: It’s 10pm—Do You Know Where Your APIs Are?

Recently Added

Cloud-Native & Pentesting - Caroline Wong, Cobalt

Cloud-Native & Pentesting - Caroline Wong, Cobalt

Cybersecruity Talent Shortage, Neal Bridges - Query.AI

Cybersecruity Talent Shortage, Neal Bridges - Query.AI

Batch Data to Real Time Revolution, Arjun Narayan - Materialize

Batch Data to Real Time Revolution, Arjun Narayan - Materialize

Collective Defense - James Turgal, Optiv

Collective Defense - James Turgal, Optiv

Cutting Cybersecurity Budgets - Joseph Payne, Code42

Cutting Cybersecurity Budgets - Joseph Payne, Code42

MIT White Paper - Karen Crowley, Deep Instinct

MIT White Paper - Karen Crowley, Deep Instinct

Techstrong News Recap - August 8, 2022

Techstrong News Recap - August 8, 2022

Understanding Codebases - Shanea Leven, CodeSee

Understanding Codebases - Shanea Leven, CodeSee

Zero Touch IT - Thomas Donnelly, BetterCloud

Zero Touch IT - Thomas Donnelly, BetterCloud

Every Experience Matters Report - Marcus Merrell, Sauce Labs

Every Experience Matters Report - Marcus Merrell, Sauce Labs

Quantum Leaps for Women in STEM - Tech. Strong. Women. EP 8

Quantum Leaps for Women in STEM - Tech. Strong. Women. EP 8

OpenTelemetry Project - Perk Stozek, Sumo Logic

OpenTelemetry Project - Perk Stozek, Sumo Logic

Log4jShell Vulnerability Report - Dan Lorenc, Chainguard

Log4jShell Vulnerability Report - Dan Lorenc, Chainguard

Techstrong News Recap - August 4, 2022

Techstrong News Recap - August 4, 2022

Hack in the Box - Haris Pylarinos, Hack the Box

Hack in the Box - Haris Pylarinos, Hack the Box

Headless CMS - Dominik Angerer, Storyblok

Headless CMS - Dominik Angerer, Storyblok

Continuous Delivery Evolution - Adam Frank, Armory

Continuous Delivery Evolution - Adam Frank, Armory

HR and Cybersecurity - Keith Neilson, CloudSphere

HR and Cybersecurity - Keith Neilson, CloudSphere

Techstrong News Recap - August 2, 2022

Techstrong News Recap - August 2, 2022

Techstrong TV - August 2, 2022

Techstrong TV - August 2, 2022

Focusing on Known Vulnerabilities – Scott Holewinski, Arctic Wolf

Focusing on Known Vulnerabilities – Scott Holewinski, Arctic Wolf

Managing Kubernetes Environments – Bhaskar Gorti, Platform9

Managing Kubernetes Environments – Bhaskar Gorti, Platform9

The Storm Chaser - CISO Talk EP 27

The Storm Chaser - CISO Talk EP 27

Security for Unmanageable Applications – Bel Lepe, Cerby

Security for Unmanageable Applications – Bel Lepe, Cerby

ARE YOU IN?

Get enhanced value from the site through the exclusive “members-only” content. 200,000+ subscribers already enjoy our premium stuff.

Subscribe Now