Security Tooling in Your DevOps Pipeline

Overview

Explore strategies for integrating security tooling and automation into DevOps pipelines in this 39-minute conference talk by Nancy Gariché. Learn how to implement security assessments early and throughout the CI/CD process, replacing slow manual methods with efficient automated solutions. Discover techniques for scanning platforms and code for vulnerabilities, performing static and dynamic security testing, and analyzing third-party components. Gain insights into shifting security left, gatekeeper approaches, and the differences between Waterfall and Agile methodologies. Delve into OWASP guidelines, secret detection, container security, and infrastructure considerations. Acquire valuable resources to enhance your DevOps security practices and keep pace with rapid development cycles.

Syllabus

Intro
Security
Shifting Left
Gatekeeping
Waterfall vs Agile
Security Tooling
OASP
Static Application Security
Dynamic Application Security
Software Composition Analysis
Secret Detection
Containers
Infrastructure
Resources

Taught by

NDC Conferences

Reviews

Start your review of Security Tooling in Your DevOps Pipeline

Coursera Cuts Jobs Despite $100M Revenue Milestone

Most common

Popular subjects

Popular courses

Security Tooling in Your DevOps Pipeline

Overview

Syllabus

Taught by

Reviews

Coursera Cuts Jobs Despite $100M Revenue Milestone

Taught by

DevSecOps Fundamentals

Application Security in an Agile SDLC

Security in the Delivery Pipeline

SecDevOps - Current Research and Best Practices

The Developer's Field Guide to Software Security

How to Effect Change in the Epistemological Wasteland of App Security

Never Stop Learning.