Enterprise computing is going through a major transformation shifting towards dynamic provisioning and immense use of cloud-based systems and services. With the demand to create higher-quality and flexible software faster than ever before, Continuous Delivery models using DevOps are being widely adopted. Security teams have been often left out of the DevOps discussion, operating at their own pace, thus slowing down the software release process. DevSecOps approach seeks to achieve greater efficiency and productivity through team collaboration, incorporating security principles in the DevOps process. The focus of this presentation is to discuss a practical approach to DevSecOps, by applying development and security practices and tools to automate the security testing, validation of security controls and vulnerability management as part of the software development lifecycle.

Talk Level:
INTERMEDIATE

Bio:
Senior security expert and certified ethical hacker at the Global architecture team at Experian DA with more than 10 years of experience in the security domain. Starting from application security - design, development, and integration of security services in software products, now with main focus on exploitation techniques covering different layers of the vulnerability stack, vulnerability management, doing internal ethical hacking and security awareness workshops.