This track is focused on the DevSecOps tools and techniques to embed security as part of CI/CD pipelines.
Total sessions for this track: 13
Sessions not mapped to any day or time
- Agile practices for security teams
- OWASP DevSecOps Cheat Sheet
- WAFs - Understanding and measuring how they behave
(back to all track's schedule)
Working Sessions 8
Here are the working sessions that are currently being planned.
|Agile Practices for Security Teams||DevSecOps||Agile Practices for Security Teams|
|Creating a Security Champions network||DevSecOps|
|Dealing with DevSecOps Findings||DevSecOps||How to deal with the security findings in an appsec pipeline and drive continuous improvement of the testing policies|
|DevSecOps Maturity Model (DSOMM)||DevSecOps||DevSecOps Maturity Model (DSOMM)|
|From Threat Modeling to DevSecOps metrics||DevSecOps|
|Integrating Security Tools in the SDL||DevSecOps||Integrate security tools as part of CI/CD pipeline to find/fix issues early in SDL|
|Secrets Management||DevSecOps||Secrets Management in a DevSecOps world|
|Securing the CI Pipeline||DevSecOps||Secure the CI/CD pipeline|
User Sessions 3
Here are the users sessions that are currently being planned.
|Creating Appsec metrics and visualisation||DevSecOps||AppSec Metrics and Visualisation|
|WAFs - Understanding and measuring how they behave||DevSecOps|
|Writing security tests to confirm vulnerabilities and fixes||DevSecOps||Hands on session writing security tests|
If you want to be involved please make the changes on GitHub and send a Pull Request with your ideas.
If you feel that there is missing working session that we NEED to have at the Summit, please create it.
|Organizers||Dominik de Smit Dominik de Smit|