Help Irongeek.com pay for bandwidth and research equipment:
A DevSec ops approach to bringing security beyond the security team - Julien Vehent (BSides Tampa 2020) (Hacking Illustrated Series InfoSec Tutorial Videos)
A DevSec ops approach to bringing security beyond the security team
BSides Tampa 2020
Abstract: What if operations teams defended their perimeters perfectly? What if developers always implemented the best security controls? What if product managers always made decisions based on a complete understanding of security risks? What if organizations were so good at security, that the security team no longer needed to exist? In this keynote, Julien explores the idea of using modern techniques, culture shifts and devops principles to grow a security-first culture in your organization. He reflects on years of maturing, improving and socializing the security strategy of Firefox at Mozilla, and shares examples and stories of bringing security beyond the security team.
Julien is responsible for the operational security of Firefox?s backend infrastructure at Mozilla. He is the author of Securing DevOps, published at Manning Ed, and a developer of various defensive security tools. Julien can be found on twitter and github at @jvehent.