Building Security into DevOps Without Breaking It

Presented by

Steven Zimmerman, Product Marketing - Developer Solutions

About this talk

As development technologies become more fast-paced, modular, and automated, the tools and practices used to secure the software that passes through these pipelines must evolve. While many application security testing (AST) tools can be integrated into pipelines, teams often struggle with complexity, performance, and noisy results. Injecting security into DevOps without sacrificing efficiency requires a concerted approach focusing on: - Integration and automation that minimizes impediments, running necessary tests at appropriate times - Remediation of prioritized risks aligned to business needs - AppSec-enabled developers equipped with what they need to secure code as they write it - Modular AST that can be employed based on the software being tested
Related topics:

More from this channel

Upcoming talks (18)
On-demand talks (190)
Subscribers (59181)
Synopsys Software Integrity Group provides integrated solutions that transform the way development teams build and deliver software, accelerating innovation while addressing business risk. Our industry-leading portfolio of software security products and services is the most comprehensive in the world and interoperates with third-party and open source tools, allowing organizations to leverage existing investments to build the security program that’s best for them. Only Synopsys offers everything you need to build trust in your software.