Making It Easier to do the Right Things: Govern, Measure and Audit DevSecOps (US 2021)
DevSecOps is a more than just getting security testing integrated into a pipeline and using the results to influence flow. Real success with DevSecOps comes when you are able to identify and measure critical aspects of your risks as well as your security controls and functions. It means that you have governance that enables and encourages the right behaviors – not just inhibits bad ones and you have an audit function that can measure this success. It also means you are able to incorporate and include security related information from all parts of the SDLC – including threat, design, testing and at runtime. Many places have achieved higher degrees of automation and education within their DevSecOps initiatives, however this needs to be an improving and continuous cycle. Taking it to the next level involves intensify these efforts with accurate threat analysis, secure design, measuring, governance and audit. Join us as we share insights on how organizations are moving beyond DevSecOps and more towards real Continuous Security.
Application Security Evangelist, HCL Software
CTO AppScan, HCL Software
Senior Director of Application Security, IGT
Unlimited users from organization
VendorDome: What does it mean to be a developer in the era of cyber crime?
Brian Fox, Sonatype; Stephen Magill, Sonatype; Sacha Labourey, CloudBees; Hope Lynch, CloudBees
VendorDome: Beyond the Buzzwords: Going Deep on DevOps with Dynatrace & LaunchDarkly
Dawn Parzych, LaunchDarkly; Rob Jahn, Dynatrace; Erin Jones, Dynatrace
Shifting Left on Production Excellence with Observability
Shelby Spees, Equinix Metal; Liz Fong-Jones, Honeycomb.io
Interview: Amanda Silver on Leadership and Remote Work
Amanda Silver, Microsoft; Gene Kim, IT Revolution
"She’s Not Dead Yet, Jim": Vulnerability and Retrospectives in Emergency Medicine
Dr. Al'ai Alvarez, Stanford Medicine; Kurt Andersen, Blameless; Christina Tan, Blameless
The Four Characteristics of Structure Needed to Get Great Dynamics
Gene Kim, IT Revolution; Dr. Steve Spear, The High Velocity Edge: How Market Leaders Leverage Operational Excellence to Beat the Competition
How Discover Financial Services Puts Engineering “Craftsmanship” at the Center of Our Digital Transformation
Dr. Angel Luis Diaz, Discover Financial Services; Sheila Lodhia, Discover Financial Services
Productizing the Network: Square Peg, Round Hole?
Girija Rao, Capital One; Denée Ferguson, Capital One; Jennifer Miles, Capital One
Continuous Delivery at Suncor's Digital Bay; Mining Maintenance Meets DevOps
John A. Hill, Suncor; Lindsey Deluca, Suncor; Joey Roa, Suncor
VendorDome: Software Supply Chain Attacks: Why They Matter and What DevOps Needs to Do
Daniel Nurmi, Anchore; Rory McCune, Aqua Security; Rani Osnat, Aqua Security
Interview: Kimberly Johnson and Christopher Porter on Leadership
Kimberly H. Johnson, Fannie Mae; Christopher Porter, Fannie Mae; Gene Kim, IT Revolution
Journey to Digitopia: The Government of Canada's Quest to Modernize Services
Marc Brouillard, Government of Canada; Denis Skinner, Government of Canada
A Radical Enterprise: Pioneering the Future of High Performance
Matt K. Parker, 'A Radical Enterprise'
Developer Productivity Engineering – The Next Big Thing in Software Development
Justin Reock, Gradle, Inc.
The Serverless Edge - Using Wardley Mapping with the Value Flywheel for combined business & technology evolution
David Anderson, 'The Serverless Edge'; Mark McCann, 'The Serverless Edge'
A DevNetOps Journey – How We Brought DevOps to Our Network Team
Hoda D Alshami, Nationwide Insurance; Mike Leuzinger, Nationwide Insurance
Chaos and Reliability: A Surprising Friendship in the Enterprise
Troy Koss, Capital One; Courtney Nash, Verica
Cloud-native DevSecOps at Supersonic Speeds (well...getting there)
Derek 'Eeyore' Bissinger, USAF; Michael Snyder, Oteemo, Inc.
Banking on Flow Metrics – Bank of New Zealand Transformation Journey
Paul Littlefair, Bank of New Zealand; BMK Lakshminarayanan, Bank of New Zealand
From Grass Roots to Brush Fire: Creating Massive Organizational Momentum Using Communities of Practice During a Global Pandemic
Jill Mead, U.S. Bank; Eric Kramlinger, Traive
A Force for Good: How TrueBlue is "Accelerating" Connecting People with Work
Jeff Dirks, TrueBlue; Carter McHugh, PeopleScout, a TrueBlue Company
The Shift to a DevOps Model While Building Our Cloud Platform - You Build it, You Run it!
Sakthi Kasiramalingam, Discover Financial Services; Bryan Payton, Discover Financial Services
Nationwide Building Society: Measure for Learning
Marc Price, Nationwide Building Society; Zsolt Berend, Nationwide Building Society
How William Hill uses PagerDuty and Rundeck to Deliver Full-Service Ownership in a Highly Regulated Environment
Rob King, William Hill; Matt Livermore, PagerDuty
Fear to Hope - How HCSC Became Nimble Through Experimentation During Peak Demand
Tashfeen Mahmood, HCSC; Dominica DeGrandis, Tasktop
Why the Dora Metrics and Feature Management are a Brilliant Combination
Michael Gillett, Betway Group
Cloud Data Journey: Story Of Adopting Cloud Technology and Modernization of Data Pipeline
Prajakta Yerpude, Discover Financial Services; Shivani Anand, Discover Financial Services
Tales From the DevOps Loop: 4 Teams Approach to 1 Common DevOps Framework
Denver Martin, Thread Research
ENSUCKLOPEDIA OF DevUps - An improvised glossary to help us for understanding of What DevOps should not be or become!!!
Jorge Luis Castro Toribio, ntt data
Governance, Compliance, and Risk in the SDLC Can Be a Fun Event!
Jeremy Castle, State Farm Insurance; Ryan Chambers, State Farm Insurance
Saving the Software Supply Chain: Critical Trends and 5 Must-Dos for DevOps
Daniel Nurmi, Anchore; Kim Weins, Anchore
Modern Test Automation, From Cloud to Mainframe
Keith Puzey, Broadcom Enterprise Software; Sujay Solomon, Broadcom Mainframe Software
Embedding Security: How We Use Automation to Reduce Time and Effort for Cisco Developers to Secure their Products
Chet Burgess, Cisco
Unlocking New Cloud-based Business Opportunities in an Industrial Company With a Novel Continuous Quality Assurance Approach
Klaus Baumgartner, Siemens AG; Dr. Peter Fassbinder, Siemens AG
DevOps and Internal Audit: A Great Partnership (Part 2)
Clarissa Lucas, Nationwide Insurance; Rusty Lewis, Nationwide Insurance; Ethan Culp, Nationwide Insurance
Making It Easier to do the Right Things: Govern, Measure and Audit DevSecOps
Dragan Pleskonjic, IGT; Colin Bell, HCL Software; Rob Cuddy, HCL Software
How's Your Bank Working From Home?
George Proorocu, ING Bank; Mihai Popa, ING Bank; Mihai Roman, ING Bank