Webinar Description
Traditionally, information security was a bottleneck in software delivery.
It was either “let’s review everything after the software is done” or “you can’t do anything until it’s approved by security”.
In today’s world of DevOps, neither approach is viable.
In a modern software development life cycle (SDLC) you have to eliminate bottlenecks and release fast and seamlessly.
What’s the solution? DevSecOps.
While Baruch has issues with the name (will discuss!), the essence of building security into the process and shifting it left, closer to the source is the right way to go, both Quintessence and Baruch agree. They will discuss how it should be done, and what changes are required in a mindset, the culture, and the toolchain of software delivery. Will DevSecOps improve the experiences and outcomes of dev+ops and information specialists? Stay tuned to know the answer!
But as testing along the pipeline doesn’t eliminate the risk of bugs in production, DevSecOps doesn’t eliminate security incidents. And when that happens, reacting right and fast is the only way to go. Managing security incidents correctly is all about the right process, and Quintessence knows what to do.
While Baruch has issues with the name (will discuss!), the essence of building security into the process and shifting it left, closer to the source is the right way to go, both Quintessence and Baruch agree. They will discuss how it should be done, and what changes are required in a mindset, the culture, and the toolchain of software delivery. Will DevSecOps improve the experiences and outcomes of dev+ops and information specialists? Stay tuned to know the answer!
But as testing along the pipeline doesn’t eliminate the risk of bugs in production, DevSecOps doesn’t eliminate security incidents. And when that happens, reacting right and fast is the only way to go. Managing security incidents correctly is all about the right process, and Quintessence knows what to do.
Presenter Information
Baruch Sadogursky
Head of Developer Relations at JFrog
Baruch Sadogursky (a.k.a JBaruch) is the Chief Sticker Officer (also, Head of Developer Relations) at JFrog. His passion is speaking about technology. Well, speaking in general, but doing it about technology makes him look smart, and 17 years of hi-tech experience sure helps. When he’s not on stage (or on a plane to get there), he learns about technology, people and how they work, or more precisely, don’t work together.
He is a CNCF ambassador, Developer Champion, and a professional conference speaker on DevOps, Java and Groovy topics, and is a regular at the industry’s most prestigious events including JavaOne (where he was awarded a Rock Star award), DockerCon, Devoxx, DevOps Days, OSCON, Qcon and many others.
He is a CNCF ambassador, Developer Champion, and a professional conference speaker on DevOps, Java and Groovy topics, and is a regular at the industry’s most prestigious events including JavaOne (where he was awarded a Rock Star award), DockerCon, Devoxx, DevOps Days, OSCON, Qcon and many others.
Quintessence Anx
Developer Advocate at PagerDuty
Quintessence is a Developer Advocate at PagerDuty, where she brings over a decade of experience breaking and fixing things in IT. At PagerDuty, she primarily focuses on cultural transformation, tooling, and best practices for DevOps. Outside of work, she mentors underrepresented groups to help them start sustainable careers in technology. She also has a cat and an aquarium with a mantis shrimp (of The Oatmeal fame) and two maroon clownfish.
