Shifting Application Security Left: Where to Start

Presented by

Chris Wysopal, CTO, Veracode

About this talk

The demands of modern software development and the rise of DevOps are shifting security left into the early phases of the development lifecycle. Companies that navigate this significant cultural, organizational, and technological change well are outpacing their competitors. But where to begin? In this session, we will describe five essential steps for shifting security left: 1) Make security autonomous from day one. 2) Integrate as you code. 3) Avoid false alarms. 4) Create security champions. 5) Maintain operational visibility. Equipped with this guidance you can begin to make the changes that will transform application security into a responsibility that is shared by development and security and that continues once applications are in production and operation. By shifting security left, you unburden your security team, empower your developers to write better code from the start, and deliver stronger, better applications than your competitors. This session is part of Veracode's "Your AppSec Game Plan" Summit.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (393)
Subscribers (30725)
Veracode delivers the most widely used cloud-based platform for securing web, mobile, legacy and third-party enterprise applications. By identifying critical application-layer threats before cyber-attackers can find and exploit them, Veracode helps enterprises deliver innovation to market faster — without sacrificing security.