Explore DevOps security culture change in this 40-minute conference talk from Converge 2017. Learn about DevOps principles, security integration, and culture hacking techniques. Discover practical security activities and behaviors, including code review practices, vulnerability eradication strategies, and timely incident response. Gain insights on fostering a security-minded DevOps culture through teaching and encouragement. Walk away with key takeaways and valuable resources to implement AppSec behaviors in your DevOps environment.
Overview
Syllabus
Intro
Chris Romeo
Agenda
DevOps
DevOps Memes
DevOps Culture
Continuous Principles
DevOps Security
Changing DevOps and Integrating Security
Security Culture
Culture Hacking
Security Activities
Security Behaviors
Security Code Review
Eradicating ThirdParty Software Vulnerabilities
Be Mean to Your Code
Respond in a timely and organized fashion
Teaching and encouraging
Summary
Key takeaways
Resources
Contact Information
