Presentation: You Build It, You Secure It

Track: DevOps: You Build It, You Run It

Location: Ballroom BC

Day of week:

Slides: Download Slides

Level: Intermediate

Persona: Architect, Developer, DevOps Engineer, General Software, Technical Engineering Manager

More talks on:

Abstract

Early on in the "cloud" era, Werner Vogels offered his famous quote "You Build It, You Run It". With DevOps this has become a mantra for shared responsibility between developers and operations. Operations learned how to process infrastructure as code and participate early in the supply chain of a service's life cycle. Developers learned that they had responsibilities to enable and in many cases operationalize their service. Now there is a new movement to include and collaborate in a similar way with Security. This is all part of the ideal approach where we "shift everything left" in the delivery pipeline.

In this session, we will talk about how developers and operators can include security in all parts of the delivery pipeline, and implement security gates in the same way as they implement code test gates.

Speaker: John Willis

Founder @botchagalupe

John Willis is the Founder of Botchagalupe Technologies. Before this, John was the Vice President of Devops and Digital Practices at SJ Technologies the Director of Ecosystem Development for Docker, which he joined after the company he co-founded (SocketPlane, which focused on SDN for containers) was acquired by Docker in March 2015. Previous to founding SocketPlane in Fall 2014, John was the Chief DevOps Evangelist at Dell, which he joined following the Enstratius acquisition in May 2013. He has also held past executive roles at Opscode/Chef and Canonical/Ubuntu. John is the author of 7 IBM Redbooks and is co-author of the “Devops Handbook” along with authors Gene Kim and Jez Humble.

Find John Willis at

Speaker page

@botchagalupe
https://www.linkedin.com/in/johnwillisatlanta/

Similar Talks

License Compliance for Your Container Supply Chain

Qcon

Open Source Engineer @VMware

Nisha Kumar

The System of Profound Knowledge

Qcon

VP, Production Engineering @packethost

Ben Rockwood

Incident Management in the Age of DevOps & SRE

Qcon

Co-Founder and Chief Product Officer @Rundeck

Damon Edwards

Exploiting Common iOS Apps’ Vulnerabilities

Qcon

Software Engineer @Google

Ivan Rodriguez

Securing Software From the Supply Side

Qcon

Senior Engineering Manager @GitHub

Nickolas Means

Security Culture: Why You Need One and How to Create It

Qcon

Co-Founder @hello_Elevate

Masha Sedova

DevOps & Lean Thinking Panel

Qcon

Agile Methods Coach & Advocate for Woman in Tech

Cat Swetel

Reflecting on a Life Watching Movies and a Career in Security

Qcon

VP Information Security @Netflix

Jason Chan