DevOps, Webinars

Improving DevSecOps through breaking down silos and better collaboration

Application Security has traditionally been moving at a very different speed than application development. Security teams focused on finding known vulnerabilities in existing applications. With the traditional, long change cycle application development model, patching them was often not an option. This has led to the “virtual patching” approach, effectively making security a bolt-on afterthought.

These days the application development lifecycle is speeding up like never before. This creates an opportunity for change, but with developers outnumbering security personnel significantly this requires much better collaboration. How to tear down silos and make these teams work effectively together? Let’s talk about it!

In this roundtable, we will cover:

How to effectively marry security and governance with agile software development?
How to ensure every application is covered by security processes?
Full security coverage requires many angles: SAST, DAST, dependencies scanning, container image scanning, fuzzy scanning, to name a few. How to ensure you can understand actual business risk with such complexity?
How to scale the process? What are the best practices for empowering developers without losing oversight?
Is DevSecOps adoption is industry-specific? If so, then why?

Thu, Oct 29, 2020 10:00 AM - 11:00 AM CET

Speakers:

Michał Kułakowsk
Channel Solution Architect, Global System Integrators
GitLab
Maximilian Hertstein
Cloud Security Engineer
Deutsche Telekom
Thilo Hermann
Vice President
Capgemini
Stefan Gärtner
Head of Competence Center CICD
SVA