Presentation: You Build It, You Secure It
Abstract
Early on in the "cloud" era, Werner Vogels offered his famous quote "You Build It, You Run It". With DevOps this has become a mantra for shared responsibility between developers and operations. Operations learned how to process infrastructure as code and participate early in the supply chain of a service's life cycle. Developers learned that they had responsibilities to enable and in many cases operationalize their service. Now there is a new movement to include and collaborate in a similar way with Security. This is all part of the ideal approach where we "shift everything left" in the delivery pipeline.
In this session, we will talk about how developers and operators can include security in all parts of the delivery pipeline, and implement security gates in the same way as they implement code test gates.
Similar Talks
License Compliance for Your Container Supply Chain
Open Source Engineer @VMware
Nisha Kumar
The System of Profound Knowledge
VP, Production Engineering @packethost
Ben Rockwood
Incident Management in the Age of DevOps & SRE
Co-Founder and Chief Product Officer @Rundeck
Damon Edwards
Exploiting Common iOS Apps’ Vulnerabilities
Software Engineer @Google
Ivan Rodriguez
Securing Software From the Supply Side
Senior Engineering Manager @GitHub
Nickolas Means
Security Culture: Why You Need One and How to Create It
Co-Founder @hello_Elevate
Masha Sedova
DevOps & Lean Thinking Panel
Agile Methods Coach & Advocate for Woman in Tech
Cat Swetel
Reflecting on a Life Watching Movies and a Career in Security
VP Information Security @Netflix