Explore the practical application of the OWASP DevSecOps Maturity Model (DSOMM) in this 40-minute conference talk from LASCON. Discover how to bridge the gap between theory and implementation in cloud-native and fast-paced engineering environments. Learn about the challenges of applying security measures without automation and how open-source security tools can provide comprehensive coverage for various layers of the DSOMM framework. Follow along with live code demonstrations that showcase the application of relevant security controls using powerful open-source tools for each requirement across different stages of the DSOMM. Gain valuable insights from Chris Koehnecke, VP Security Engineering & CISO at Jit, as he guides you through the process of transforming theoretical security plans into enforceable practices.
DSOMM from Theory to Enforcement - Applying Security in Cloud Native Environments
Overview
Syllabus
DSOMM from Theory to Enforcement - Chris Koehnecke
Taught by
LASCON
Related Courses
-
DevSecOps using GitHub Actions: Secure CICD with GitHub
-
DevSecOps Fundamentals
-
DevSecOps : Master Securing CI/CD | DevOps Pipeline(2023)
-
Building an AppSec Program with a Budget of $0 - Beyond the OWASP Top 10
-
Making Continuous Security a Reality with OWASP's AppSec Pipeline - 2018
-
OWASP DSOMM Project - Introduction to DevSecOps Maturity Model
