How to Implement a DevSecOps Culture in Your Organization

Presented by

Chaim Mazal, VP of InfoSec, ActiveCampaign | Gareth Rushgrove, VP of Product, Snyk | Dane Grace,Technical Product Mgr, Rapid7

About this talk

A conversation with Chaim Mazal, ActiveCampaign CISO, on his teams journey to DevSecOps Modern development practices have forced organizations to combine development and IT operations under one DevOps umbrella in order to build and release code at a faster rate than ever before. However, due to this newfound developer agility, as well as the widespread use of open source technology in modern applications, companies have found themselves scrambling to keep up with this eye-popping pace of innovation and the amount of risk its introduced. Join Chaim Mazal, ActiveCampaign's CISO, as he shares his experience in transforming his teams approach to security at each layer of the technology stack, from development to staging and production, and how he used the right tools and practices to share security responsibilities among different teams to scale security throughout the IT organization. In this webinar, Chaim, along with security experts from Rapid7 and Snyk, will walk you through some of the steps he took to implement a DevSecOps culture by: Changing the way development and security teams interact Choosing the right tools to implement a DevSecOps practice Implementing code dependency checks Implementing automated security tests in CI/CD Implementing threat modeling and risk assessment in your code logic
Related topics:

More from this channel

Upcoming talks (24)
On-demand talks (620)
Subscribers (53581)
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.