Explore the facts, myths, and legends surrounding DevOps and security in this 34-minute conference talk from AppSecUSA 2014. Delve into common misconceptions about DevOps breaking security protocols or neglecting security considerations. Discover how proper implementation of DevOps practices can actually enhance application security through counter-intuitive features. Learn about the challenges and benefits of integrating DevOps with security, including topics such as separation of duties, continuous deployment, ITIL compatibility, and auditing concerns. Gain insights from David Mortman, Chief Security Architect and Distinguished Engineer at Dell, as he dismantles prevalent myths and presents factual information about the relationship between DevOps and security in modern software development environments.
DevOps and Security - The Facts, The Myths, The Legend
Overview
Syllabus
DevOps and Security: The Facts, The Myths, The Legend
DevOps Breaks Separation of Duties
DevOps Ignores Security
C.D. Means Less Secure Code
DevOps & ITIL Don't Mix AKA DevOps Has No Process
Auditors Hate DevOps
Ignore DevOps At Your Own Risk
Taught by
OWASP Foundation
