DevSecOps

This track is focused on the DevSecOps tools and techniques to embed security as part of CI/CD pipelines.

Schedule

Total sessions for this track: 13

MondayTuesdayWednesdayThursdayFriday
AM-1
10:30 - 12:30
Agile Practices for Security Teams
Agile Practices for Security Teams
Larch room
Dealing with DevSecOps Findings
Dealing with DevSecOps Findings
Maulden room
Integrating Security Tools in the SDL
Integrating Security Tools in the SDL
Maulden room
PM-1
13:30 - 15:00
Creating Appsec metrics and visualisation
Creating Appsec metrics and visualisation
Maulden room
Secrets Management
Secrets Management
Maulden room
Time slot over-subscribed
From Threat Modeling to DevSecOps metrics
From Threat Modeling to DevSecOps metrics
Montague room
Integrating Security Tools in the SDL
Integrating Security Tools in the SDL
Maulden room
Writing security tests to confirm vulnerabilities and fixes
Writing security tests to confirm vulnerabilities and fixes
Pedley room
PM-2
15:30 - 16:30
DevSecOps Maturity Model (DSOMM)
DevSecOps Maturity Model (DSOMM)
Maulden room
Dealing with DevSecOps Findings
Dealing with DevSecOps Findings
Maulden room
Securing the CI Pipeline
Securing the CI Pipeline
Maulden room
PM-3
16:30 - 18:00
DevSecOps Maturity Model (DSOMM)
DevSecOps Maturity Model (DSOMM)
Maulden room
Dealing with DevSecOps Findings
Dealing with DevSecOps Findings
Maulden room
Securing the CI Pipeline
Securing the CI Pipeline
Maulden room
Eve-1
19:30 - 21:00
Creating a Security Champions network
Creating a Security Champions network
Dinner Villa
Sessions not mapped to any day or time
(back to all track's schedule)

Working Sessions 8

Here are the working sessions that are currently being planned.

TitleTrackDescription
Agile Practices for Security TeamsDevSecOpsAgile Practices for Security Teams
Creating a Security Champions networkDevSecOps
Dealing with DevSecOps FindingsDevSecOpsHow to deal with the security findings in an appsec pipeline and drive continuous improvement of the testing policies
DevSecOps Maturity Model (DSOMM)DevSecOpsDevSecOps Maturity Model (DSOMM)
From Threat Modeling to DevSecOps metricsDevSecOps
Integrating Security Tools in the SDLDevSecOpsIntegrate security tools as part of CI/CD pipeline to find/fix issues early in SDL
Secrets ManagementDevSecOpsSecrets Management in a DevSecOps world
Securing the CI PipelineDevSecOpsSecure the CI/CD pipeline

User Sessions 3

Here are the users sessions that are currently being planned.

TitleTrackDescription
Creating Appsec metrics and visualisationDevSecOpsAppSec Metrics and Visualisation
WAFs - Understanding and measuring how they behaveDevSecOps
Writing security tests to confirm vulnerabilities and fixesDevSecOpsHands on session writing security tests

Please help

If you want to be involved please make the changes on GitHub and send a Pull Request with your ideas.

If you feel that there is missing working session that we NEED to have at the Summit, please create it.

Metadata

OrganizersDominik de Smit Dominik de Smit
<