Security, Cloud, Operations, and Product/Development groups are all building out their versions of the next cloud platform and governance controls. As each considers overlapping approaches including automated enforcement, shift left, and other posture management approaches one question dominates: "How can security keep pace with delivery?"
Expect insight on how to:
- Create security as code (SAC);
- Integrate SAC into existing software delivery and governance lifecycles;
- Evolve from 'guardrails' to preventative controls; and
- Navigate follow-on action from monitoring and drift detection activities.
Join John Steven, Concourse Labs CTO and co-author of the BSIMM study, as he shares his hands-on experience implementing security-as-code architectures and demonstrates best practices for developing security policy and controls, to automate DevSecOps and runtime cloud security.