DevSecOps: Securely Navigating a Shifting Threat Landscape
Date: Thursday, January 13th at 11am PT / 2pm ET
"92% of reported vulnerabilities come from applications NOT networks.”
-- Cybersecurity Insiders Application Security Report 2018
The DevOps model has been making it possible for developers to collaborate with operations to deploy software into production faster and with fewer errors in a growing number of companies for more than a decade. But in this new collaborative lifecycle, security is too often an afterthought inserted just before release—a critical error given the rapidly evolving threat landscape. Enter DevSecOps, which brings intelligence and situational awareness to the process.
In this live Tech Talk, veteran technology journalist John K. Waters talks with DevSecOps expert Stephen Walters, solution architect at xMatters, a subsidiary of critical event management company Everbridge, about DevSecOps best practices. You'll learn:
- What DevSecOps is and how it enhances the DevOps model
- What DevSecOps is not, with the most common myths busted
- DevSecOps best practices, including:
- The CALMS framework
- Shift-left: applying proactive service management principles
- Shift-right: applying reactive service delivery principles
- How to know if it's working for your organization
About the presenters:
John K. Waters, Editor in Chief, ADTmag.com
John K. Waters is the editor in chief of a number of Converge360.com sites, with a focus on high-end development, AI and future tech. He's been writing about cutting-edge technologies and culture of Silicon Valley for more than two decades, and he's written more than a dozen books.
He also co-scripted the documentary filmSilicon Valley: A 100 Year Renaissance, which aired on PBS. He can be reached [email protected]
Stephen Walters, Solution Architect at xMatters, an Everbridge Company
Stephen works as a Solution Architect for xMatters, an Everbridge Company, providing a Service Reliability Platform for integrating and orchestrating better, faster Incident & Defect Management for Critical Event Management in enterprise scale corporations. He has extensive expertise with Business and IT Strategy alignment, design and implementation of Software Development Lifecycle Frameworks, including CMMI, ITIL, TOGAF, SCRUM, SAFe & DevOps.