Completed
The UK Government published 8 principles
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
When DevOps Meets Security
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Government Digital Service
- 3 The state of information security in 2015
- 4 Approval to operate
- 5 Accreditation
- 6 Certification
- 7 Traditional model
- 8 Agile changes everything
- 9 Focus on flow and cycle time
- 10 A security nightmare!
- 11 A brave new world for security
- 12 Security needs to be an enabler
- 13 Biggest consistent finding?
- 14 Principles over rules
- 15 The UK Government published 8 principles
- 16 Accept uncertainty
- 17 Security as part of the team
- 18 Understand the risks
- 19 Trust decision making
- 20 Security is part of everything
- 21 User experience is important
- 22 Audit decisions
- 23 Understand big picture impact
- 24 Choose security model that's appropriate
- 25 Understand the threats
- 26 Educate decision makers to risks
- 27 Make risk decisions, per story, in the team
- 28 What do you do about it?
- 29 Transfer
- 30 Mitigate
- 31 Deter, Detect, Prevent
- 32 Reactive countermeasures
- 33 Correct, Respond, Recover
- 34 Traditional security people understand this
- 35 Misuse cases
- 36 Attack trees
- 37 Red teams
- 38 Automated penetration testing
- 39 Automated Integrated Repeatable