starts in 10 seconds
The Security Policy and Standards Landscape is Changing – What Developers Need to Know

The Security Policy and Standards Landscape is Changing – What Developers Need to Know

Security remains one of the most dynamic areas of standards, policy and the law. With the one-year anniversary of the release of the Biden administration May 12 cybersecurity executive order and the passage of the Cyber Incident Reporting for Critical Infrastructure Act and developments in global regimes, software assurance, supply chain security and secure development are growing focus areas in the regulatory and standards landscape. A panel of industry, government and policy experts will cover the key takeaways and strategic insights for developers on these emerging regulatory topics and discuss what should we expect next. We will cover existing and proposed requirements for federal procurement and for critical infrastructure sectors, agency guidance, the implementation of the May 12 executive order, NIST cybersecurity framework contemplated revisions and selected trends on product security regulations, coordinated vulnerability disclosure and supply chain/SBOM.

Share some ❤

2022 DevSecOps Days

Jennifer Czaplewski - DevSecOps at Target

Jennifer Czaplewski - DevSecOps at Target

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Julie Peterson & Orion Cassetto - Effectively Tackling Hardcoded Secrets With a Secret Management Maturity Model

Dan Shugrue & Cole Herzog - How to Build a Blueprint for Secure Software

Dan Shugrue & Cole Herzog - How to Build a Blueprint for Secure Software

Robert Sirchia - Open Zero-Trust

Robert Sirchia - Open Zero-Trust

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Joseph Woodwell - How Automation is the Only Choice for Security Professionals to Get in Front of the Zero-Day Challenge

Jim Zemlin - 10 Streams of Investment for Open Source Security

Jim Zemlin - 10 Streams of Investment for Open Source Security

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Stephen Giguere - Pwning the CI Workflow and How to Prevent It

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Reinventing Cybersecurity: Tales of Rebellion and Resistance

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Daniella Pontes - Automatically Prioritize Vulnerabilities Using Runtime Intelligence

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Mark Lambert - Scaling Application Security to the Speed of DevSecOps

Guy Gil - Reaping the Benefits of Your Dependencies

Guy Gil - Reaping the Benefits of Your Dependencies

Adam Such - What DevSecOps can learn from Elon Musk

Adam Such - What DevSecOps can learn from Elon Musk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Yuval Shchory - Beyond Unification: How CNAP Should Reduce Cloud Security Risk

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

Larry Maccherone - The 3 Ways of DevOps as the Keys to Developer-First Security

John Willis - Out of the Crisis - What Would Deming Do?

John Willis - Out of the Crisis - What Would Deming Do?

Caroline Wong - Pentesting at Scale

Caroline Wong - Pentesting at Scale

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Priyanka Sharma & Frederick Kautz - Cloud-Native and DevSecOps

Alan Shimel - 2022 DevSecOps Days Opening

Alan Shimel - 2022 DevSecOps Days Opening

Chenxi Wang, PH.D - Software Supply Chain Security:  Buzzwords or A Sustainable Market?

Chenxi Wang, PH.D - Software Supply Chain Security: Buzzwords or A Sustainable Market?

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eddie Glenn - How to Prevent the Most Common Kubernetes Security Problems

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

Eric Maxwell - Best Practices for Adopting DevSecOps Principles

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Brian Reed - Developer First Security for Screaming Fast Mobile Pipelines with GitHub & NowSecure

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Jessica Marie - API Catalog: The First Step in Protecting your APIs

Mitch Ashley - The Rise of API Security: It’s 10pm—Do You Know Where Your APIs Are?

Mitch Ashley - The Rise of API Security: It’s 10pm—Do You Know Where Your APIs Are?

ARE YOU IN?

Get enhanced value from the site through the exclusive “members-only” content. 200,000+ subscribers already enjoy our premium stuff.