Overview
Explore the practical implementation of DevSecOps and continuous security testing in this 32-minute conference talk from LASCON 2018. Gain insights into the open-source AppSec Pipeline tool, used by real-world companies for effective security work. Learn about the tool's Docker containers for automation, customization options, and essential references. Discover how to integrate the AppSec Pipeline into your team's workflow, with example templates for optimal use of automated tools. Briefly examine the use of OWASP Defect Dojo for issue storage and curation. Benefit from the field-tested methods shared by two AppSec professionals with nearly 20 years of combined experience, and take concrete steps towards implementing continuous security testing in your DevSecOps journey.
Syllabus
2018 - Making Continuous Security a Reality with OWASP's AppSec Pipeline
Taught by
LASCON