Upgrade your DevOps to SecDevOps at RootedCon

 | Continuum Blog, SecDevOps

Join our CTO Paul Santapau at RootedCon in Madrid, where he’ll be presenting a talk on implementing security in DevOps cultures.

Paul Santapau

Integrating security into agile development methodologies poses unique challenges to both the security and development teams. These are particularly striking in continuous delivery (CD) processes where the rate of code deploys and automated testing cycles are too rapid for manual techniques. DevOps practices have added another twist to the story by increasing communication and collaboration between different teams (Dev, Ops and Security) and reducing the time between code change to deployment in a live environment even more.

The aim of this talk is to demonstrate how we can embed security practices into modern DevOps software development environments. In order to do so, we’ll introduce concepts such as Agile Threat Modeling, Security Touch Points related to different phases of the SDLC and automating both security vulnerability testing and the verification of security controls using our open source BDD-Security testing framework.

Did you like this article?

YOU MAY ALSO LIKE
  • Looking for a career in Threat Modeling?  Talk to us!
    Looking for a career in Threat Modeling? Talk to us!We’re looking for an experienced Security Architect or Threat Modeler who understands how to design and build secure systems and is technically orientated. The objectives of the role are to: Research, create and update threat models for key architectures, e.g. web, mobile and for specific technologies like React.js and AWS. Provide pre-sales support by creating […]READ MORE
  • We’re hiring Security Architects/Threat Modelers
    We’re hiring Security Architects/Threat ModelersWe’re looking for an experienced Security Architect or Threat Modeler who understands how to design and build secure software and is technically minded. The objectives of the role are to: Research, create and update threat models for key architectures, e.g. web, mobile and for specific technologies like React.js and AWS. Provide pre-sales support by creating […]READ MORE
  • Meet us at OWASP AppSec USA in Orlando
    Meet us at OWASP AppSec USA in OrlandoContinuum Security is proudly sponsoring the OWASP AppSec USA event in Orlando this week.  This year’s AppSec event has already kicked off with some great Threat Modeling and DevOps security training courses and we’ll be at booth S2 to demo and answer questions on IriusRisk and BDD-Security. Have you experienced the Software Security Risk dilemma?: […]READ MORE