Post-DevOps: What Should We Shift-Left in Application Security?

Explore the evolution of DevOps and its impact on application security in this 26-minute conference talk by Riotaro OKADA. Delve into the concept of "shift-left" and examine why AppSec still faces vulnerabilities despite advancements in development practices. Learn from the experiences of the Hardening Project in Japan, gaining insights into critical aspects of DevOps stages, including risk profiling, threat response architecture design, and operational considerations. Discover the challenges AppSec faces in its ongoing evolution and understand how to take DevOps to the next level. Gain valuable knowledge about the OWASP Top 10 and extract key lessons from this informative presentation organized by the OWASP Foundation.