What's Real & What's Possible with Self-Service and Developer Speed Governance

Presented by

John Steven, Chief Technology Officer, Concourse Labs

About this talk

Security, Cloud, Operations, and Product/Development groups are all building out their versions of the next cloud platform and governance controls. As each considers overlapping approaches including automated enforcement, shift left, and other posture management approaches one question dominates: "How can security keep pace with delivery?" Expect insight on how to: - Create security as code (SAC); - Integrate SAC into existing software delivery and governance lifecycles; - Evolve from 'guardrails' to preventative controls; and - Navigate follow-on action from monitoring and drift detection activities. Join John Steven, Concourse Labs CTO and co-author of the BSIMM study, as he shares his hands-on experience implementing security-as-code architectures and demonstrates best practices for developing security policy and controls, to automate DevSecOps and runtime cloud security.
Related topics:

More from this channel

Upcoming talks (8)
On-demand talks (909)
Subscribers (67757)
CSA CloudBytes was launched as a webinar series to help us educate the industry on all matters related to the cloud. Our channel is designed to inform our audience about trending topics, new technologies, and latest research. Learn more at cloudsecurityalliance.org. Join the Cloud Security Alliance on LinkedIn and follow us on twitter: @cloudsa