Upgrade your DevOps to SecDevOps at RootedCon
Join our CTO Paul Santapau at RootedCon in Madrid, where he’ll be presenting a talk on implementing security in DevOps cultures.
Integrating security into agile development methodologies poses unique challenges to both the security and development teams. These are particularly striking in continuous delivery (CD) processes where the rate of code deploys and automated testing cycles are too rapid for manual techniques. DevOps practices have added another twist to the story by increasing communication and collaboration between different teams (Dev, Ops and Security) and reducing the time between code change to deployment in a live environment even more.
The aim of this talk is to demonstrate how we can embed security practices into modern DevOps software development environments. In order to do so, we’ll introduce concepts such as Agile Threat Modeling, Security Touch Points related to different phases of the SDLC and automating both security vulnerability testing and the verification of security controls using our open source BDD-Security testing framework.
Did you like this article?
- The OWASP Summit exceeded all expectations19 June 2017I attended my first OWASP Summit last week and it has spoiled most other conferences for me. The summit is not a traditional conference where an “expert” is selected by the CFP panel and has 40 minutes to expound The Truth from a podium, while everyone else takes notes. I’d call this a “top down” […]READ MORE
- OWASP Summit 201713 June 2017It’s the Woodstock of Application Security! Our CEO Stephen de Vries is currently at the OWASP Summit in London, participating in the Threat Modeling and BDD for Cloud Security working sessions. The OWASP Summit 2017 is a 5-day participant driven event, dedicated to the collaboration of Development and Security professionals, with a strong focus on SecDevOps. Join […]READ MORE
- First International Workshop on Gender and Cybersecurity30 May 2017Our Chief Operating Officer Cristina Bentue will participate in a round table at the First International Workshop on Gender and Cybersecurity on the 5th of June at 5pm. The full programme can be found here. The Spanish National Cybersecurity Institute (INCIBE), in collaboration with the Organisation of American States (OAS), organises the “First International Workshop […]READ MORE