starts in 10 seconds
Dan Shugrue & Cole Herzog – How to Build a Blueprint for Secure Software

Dan Shugrue & Cole Herzog – How to Build a Blueprint for Secure Software

Application developers are increasingly taking the DevSecOps ethos to heart. They are realizing that security is not just something that gets bolted-on to apps or around networks. Instead, security needs to be built into the applications that they create from the start. While many developers have turned to SAST solutions to identify vulnerabilities such as Log4Shell and Log4j, others rightfully wonder how to protect the code that they write themselves; code that – by definition – contains working examples of how to penetrate the security perimeter that their InfoSec colleagues have put in place.

Share some ❤

2022 DevSecOps Days

Jennifer Czaplewski - DevSecOps at Target

Jennifer Czaplewski - DevSecOps at Target

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Robert Sirchia - Open Zero-Trust

Robert Sirchia - Open Zero-Trust

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Jim Zemlin - 10 Streams of Investment for Open Source Security

Jim Zemlin - 10 Streams of Investment for Open Source Security

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Guy Gil - Reaping the Benefits of Your Dependencies

Guy Gil - Reaping the Benefits of Your Dependencies

Adam Such - What DevSecOps can learn from Elon Musk

Adam Such - What DevSecOps can learn from Elon Musk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

John Willis - Out of the Crisis - What Would Deming Do?

John Willis - Out of the Crisis - What Would Deming Do?

Caroline Wong - Pentesting at Scale

Caroline Wong - Pentesting at Scale

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Alan Shimel - 2022 DevSecOps Days Opening

Alan Shimel - 2022 DevSecOps Days Opening

Chenxi Wang, PH.D - Software Supply Chain Security:  Buzzwords or A Sustainable Market?

Chenxi Wang, PH.D - Software Supply Chain Security: Buzzwords or A Sustainable Market?

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

The Security Policy and Standards Landscape is Changing – What Developers Need to Know

The Security Policy and Standards Landscape is Changing – What Developers Need to Know

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Chris Scharff - Ethical Hackers can Increase your Application Security

Chris Scharff - Ethical Hackers can Increase your Application Security

ARE YOU IN?

Get enhanced value from the site through the exclusive “members-only” content. 200,000+ subscribers already enjoy our premium stuff.