Hi [[ session.user.profile.firstName ]]

Improving Security in a DevOps World

The average enterprise today leveraging hundreds of applications across multiple clouds. With the risk of cyber attacks and breaches looming large, application security is becoming a key area of focus for organizations.

Join this interactive Q&A panel of industry experts to learn more about:
- How to integrate application security testing into the DevOps process early on
- Why automation, speed and coverage are critical to the success of DevSecOps programs
- Speed vs Security: Where do you draw the line?
- Recommendations for improving security in 2019
Recorded Mar 5 2019 43 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Michelle McLean (StackRox), Azi Cohen, (WhiteSource), Cindy Blake (GitLab), Vikram Kapoor (Lacework)
Presentation preview: Improving Security in a DevOps World

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • The DevOps Challenge: Open Source Security at Scale Apr 10 2019 5:00 pm UTC 48 mins
    Shiri Ivtsan, Product Manager @ WhiteSource
    It’s no secret that open source components form the backbone of today’s software, comprising between 60-80% of modern applications. But with this, comes the alarming rise in open source vulnerabilities – more than 3,500 open source vulnerabilities were reported in 2017 – that’s 60% higher than the previous year, and the trend continued in 2018.

    The question arises: how can DevOps teams ensure a visible and continuous delivery pipeline for software releases without letting security slow them down?

    Join WhiteSource’s Product Manager, Shiri Ivtsan, as she discusses:

    - The current state of open source vulnerabilities management;

    - The latest innovations in the open source security world; and

    - The best DevOps tools to protect organizations against open source vulnerabilities and ensure agility, visibility and control regarding their open source.
  • Secure your CI/CD Pipeline from Start to Finish with CircleCI Orbs & WhiteSource Recorded: Mar 19 2019 39 mins
    Shiri Ivtsan, Product Manager @ WhiteSource | Angel Rivera, Developer Advocate @ CircleCI
    In the agile age of software development, speed is the name of the game. This is why CI/CD tools like CircleCI have played such a pivotal role in changing how we work, sending our software along through the pipes at a breakneck pace.

    We are always asking questions such as: How fast can we get a new version out to our customers? How can we add these new features and stay on schedule? How can we do these things with as little wasted time and effort as possible?

    Open source software components play an important role by providing us with the building blocks of our products. These free software components allow us to skip over the more monotonous work of writing basic features on our own by offering us tried-and-true code. This allows us to focus on our business logics instead of having to build our own frameworks and infrastructures from scratch. However, even as we enjoy the benefits of open source components, they are not without their challenges, especially when it comes to security vulnerabilities.

    In this webinar, you'll learn how:

    - WhiteSource can help teams catch vulnerabilities within open source components at early stages of the development cycle
    - You can start implementing the Whitesource CircleCI orb into your CI configuration
    - To gain insights into your software helping you make smarter decisions in working with open source components
  • The State of Open Source Security Management Recorded: Mar 6 2019 20 mins
    Rami Sass, CEO, WhiteSource & Vince Tocce, Host, Vince in the Bay Podcast
    How should organizations think about the open source components that they are using in their products? Why should organizations take steps toward open source vulnerability management? As open source management is being widely adopted and has earned its place into the standard AppSec tools suite, discover how organizations should the most of these tools and bring them into the development lifecycle.

    Join Rami Sass for a video interview at RSA Conference 2019 to learn more about:
    - Why open source is being so widely embraced by enterprises for their development nowadays?
    - What are the risks when it comes to using open source components? Are open source libraries riskier than proprietary code?
    - For those businesses that are ready to implement open source management and security, where should they start?
    - Where do you see open source usage moving in the next 5 years? What are going to be the challenges that companies are going to require solutions for managing better?
  • Improving Security in a DevOps World Recorded: Mar 5 2019 43 mins
    Michelle McLean (StackRox), Azi Cohen, (WhiteSource), Cindy Blake (GitLab), Vikram Kapoor (Lacework)
    The average enterprise today leveraging hundreds of applications across multiple clouds. With the risk of cyber attacks and breaches looming large, application security is becoming a key area of focus for organizations.

    Join this interactive Q&A panel of industry experts to learn more about:
    - How to integrate application security testing into the DevOps process early on
    - Why automation, speed and coverage are critical to the success of DevSecOps programs
    - Speed vs Security: Where do you draw the line?
    - Recommendations for improving security in 2019
  • Ubiquitous Open Source Makes for Security Challenges Recorded: Jan 23 2019 29 mins
    Rami Sass (WhiteSource) | Baruch Sadogursky (JFrog) | Cindy Blake (Gitlab)
    You don’t need an expert to tell you that open source software will be ubiquitous in the enterprise in 2019. You also don’t need an expert to tell you that this will present security challenges either. But what can you do in 2019 to ensure your open source software is as secure as you can make it? Best practices, processes and tools are coming into focus. 2019 is the year you need to implement and use them.

    Join the panel of experts as they share their best advice to help make 2019 a secure year for your open source use.
  • Find And Fix Open Source Vulnerabilities Within GitHub With WhiteSource Bolt Recorded: Dec 12 2018 6 mins
    Victoria Oiknine, Project Manager at WhiteSource
    Meet WhiteSource Bolt for GitHub - the new free app which will allow you to harness the power of open source without having to compromise on security or agility ever again!

    WhiteSource Bolt continuously scans all your repos, detects vulnerabilities in open source components and provides fixes, all in real-time, in your GitHub native environment. The tool supports both private and public repositories, and covers over 200 programming languages.

    Sign up to this short webinar to learn more about the different capabilities of this new app and how to use it in your GitHub native environment.
  • The State of Open Source Vulnerabilities Management Recorded: Nov 21 2018 51 mins
    Rami Elron, Senior Director of Product Management at WhiteSource
    The number of open source vulnerabilities hit an all-time record in 2017 with 3,500 reported vulnerabilities - that's 60% higher than the previous year, and the trend continues in 2018.

    Since it’s impossible to keep up with today’s pace of software production without open source, development and security teams are challenged to meet security objectives, without compromising on speed and quality.

    It's time for organizations to step up their open source security game. Join WhiteSource's Senior Director of Product Management, Rami Elron, as he discusses:

    - the current state of open source vulnerabilities management;
    - organizations' struggle to handle open source vulnerabilities; and
    - the key strategy for effective vulnerability management.
  • New Research Reveals Key Strategy to Manage Open Source Security Recorded: Nov 14 2018 55 mins
    Scott Crawford, Research Director at Information Security & Rami Elron, Senior Director of Product Management at WhiteSource
    According to the latest open source security research report, "The State of Vulnerabilities Management in 2018", almost 97% of developers rely upon open source components in order to develop their applications nowadays. But with the recent spike in disclosed open source vulnerabilities, the question arises whether security and development teams have the right strategy in place in order to meet their security objectives?

    Join Scott Crawford, Research Director at Information Security, and Rami Elron, Senior Director of Product Management at WhiteSource, as they discuss:

    -the current state of Open Source Security;
    -the challenges faced by security and development teams when handling open source vulnerabilities; and
    -how Open Source Security strategies need to be stepped up with the latest next-gen technology for management and prioritization
  • Automating Open Source Security: A SANS Product Review of WhiteSource Recorded: Oct 4 2018 63 mins
    Serge Berso, SANS Community Instructor and Analyst, and Rami Elron, Senior Director of Product Management at WhiteSource
    Open source components have become the key building blocks for application development in today's market, allowing companies to assemble their products faster and more efficiently. The increasing adoption of open source components, however, has introduced new security challenges that most teams are not prepared to mitigate.

    This review looks at WhiteSource's solution, which helps companies automate the entire process of open source component selection, approval and management, including detection and remediation of security and compliance issues.

    Join Serge Berso, SANS Community Instructor and Analyst, and Rami Elron, Senior Director of Product Management at WhiteSource, in this webcast to learn how WhiteSource's solution can be easily integrated into companies' software development lifecycle to:

    *Detect open source vulnerabilities in real time
    *Prioritize and remediate vulnerabilities
    *Automate policy enforcements throughout the SDLC
  • How to Achieve a DevSecOps Culture Using a Lean-Agile Approach Recorded: Sep 27 2018 60 mins
    Larry Maccherone, DevSecOps Transformation Leader at Comcast
    There are a lot of DevSecOps offerings that are just DevOps lipstick on a traditional security-as-a-gate pig. Also, security specialists, especially at large organizations, believe that better security comes from robust independent gating. On the other hand, DevOps has proven that you can safely deploy an order of magnitude or more faster than human gating can achieve.

    What's needed to add security to DevOps are tools that work well with rapid-cycle CI/CD pipelines and an approach that reinforces the DevOps culture and process changes. This requires that security specialists become self-service toolsmiths and coaches and stop thinking of their jobs as gatekeepers.

    Join Larry Maccherone, an industry-recognized thought leader on Lean/Agile, Analytics, and DevSecOps, as he introduces a framework to accomplish this mindset shift. It includes guidance on the characteristics of tools compatible with DevOps. It has been successfully used in a large DevSecOps transformation at Comcast and has gained recognition in DevSecOps circles as a leading framework.
  • Tackling the Risks of Open Source Security: 5 Things Every CISO Needs to Know Recorded: Aug 9 2018 62 mins
    Rami Elron, Senior Director of Product Management at WhiteSource
    Open Source has become the key building block for application development in today's market, where companies are under constant pressure to accelerate time to market. The increasing adoption of open source components, however, has introduced new security challenges that most teams are not prepared to mitigate in their current posture. Join the industry expert, Rami Elron, Senior Director of Product Management at Whitesource, as he presents the 5 approaches and best practices that security teams should implement in order to enable their developers to harness the power of open source without slowing them down or compromising on security.
  • Key Factors for CISO Success Recorded: Aug 8 2018 47 mins
    Mark Weatherford (vArmour), Azi Cohen(WhiteSource) | Mark Whitehead (Trustwave) | Joseph Kucic (Cavirin Systems)
    Tune in for this exclusive panel on the key factors for a successful security strategy. This is a Part 1 of 2 CISO panels during Black Hat exploring the ever-changing role of the CISO, the factors influencing their success and the elements needed to build a more cyber resilient enterprise.

    Join top cyber security executives for an interactive Q&A roundtable discussion on:
    - The changing role of CISO
    - Why cybersecurity should be a key priority
    - Key resources every CISO needs
    - How to recruit, develop and retain security talent
    - Why investing in your security culture matters
    - Biggest cyber security challenges and how to overcome them

    The session is being brought to you in partnership with ITSPmagazine and will be streamed LIVE from Las Vegas during Black Hat.
  • Strategies for Improving Enterprise Application Security Recorded: Jul 16 2018 64 mins
    Brad Causey, CISSP, and Rami Elron, Senior Director of Product Management at WhiteSource
    Most online attacks begin when a hacker discovers a single vulnerability in an enterprise application. But how can organizations eliminate these vulnerabilities before they are exploited? While most enterprises are focused on application scanning and remediation, many software development experts are advocating better, more secure application development initiatives that prevent vulnerabilities from occurring in the first place. In this webcast, experts on application security and the DevOps movement discuss the steps that enterprises can take to build security into the app development process.
  • What's New With WhiteSource? May Product Update Recorded: Jul 10 2018 41 mins
    David Habusha, VP Product at WhiteSource
    Check out our latest product update webinar to hear about our ground-breaking, new technology, the Effective Usage Analysis, as well as other, cool product enhancements that will revolutionize the way you secure and manage your open source components.

    Here's a sneak peek of what we will be discussing:

    - Our new technology, Effective Usage Analysis
    - Web Advisor
    - Contextual pattern matching engine
    - Support for over 200 languages
    - Container security solution
    - Unified Agent
    - CVSS Version 3
  • The True Story Behind the Equifax Data Breach Recorded: Nov 20 2017 26 mins
    Gal Yaffe, GM, WhiteSource
    Equifax was not only the largest data breach in US history, but it also offered a hard lesson in vulnerabilities management.

    In this webinar, we take a closer look at the Equifax breach and learn how it could have been prevented using open source security methods. We look at the differences between securing proprietary code and open source code, and learn how to shift open source security to the left, to keep the hackers away.
  • How Temenos Automated Their Open Source Components Management [Case Study] Recorded: Nov 20 2017 35 mins
    Martin Bailey, Director of Product Management, Temenos and Rami Sass, CEO, WhiteSource
    Open source adoption continues to rise, comprising between 60% and 80% of the average application codebase. Open source offers great benefits, but also introduce unique challenges which require dedicated tools to keep up with inventory, detect open source vulnerabilities and ensure license compliance.

    Watch this webinar to see how Temenos, a market leading software provider to banks and other financial institutions shares how they automated their open source management with WhiteSource and what benefits they gained.
  • Open Source Security 101 Recorded: Jul 17 2017 53 mins
    Rami Sass, CEO, WhiteSource
    How does your organization address open source security risks?

    In this webinar, we'll explain the difference between securing your open source components and your proprietary code, show you how to automatically detect open source components with known vulnerabilities, and teach you how to avoid the pitfalls of un-managed open source usage.
  • Use DevOps To Shift Left Open Source Security Recorded: Jul 17 2017 51 mins
    Forrester Principal Analyst Amy DeMartin, WhiteSource CEO Rami Sass, Microsoft Product Owner Sam Guckenheimer
    Many organizations are turning to DevOps to speed up their deployment processes, while security processes are pushing on release brakes.

    This is especially true when it comes to securing open source components, which are estimated to account for 60% to 80% of the code base for the average software product.

    In this webinar, three industry experts will discuss mitigating open source security and compliance risks, as an integral part of the DevOps cycle.

    Amy DeMartine’ Forrester Principal Analyst, will map out the challenges of appsec and how software composition analysis (SCA) tools address them.

    Rami Sass, WhiteSource CEO, will describe ways to mitigate security and compliance risks in open source software.

    Sam Guckenheimer, Product Owner at Microsoft, will show a real-life example of an integrated open source management-enabler into Microsoft Visual Studio Team Services (VSTS and TFS).
An open source security and licenses management solution
WhiteSource allows engineering, security and compliance officers to effortlessly secure and manage the use of open source components in their software, allowing developers to focus on building great products. WhiteSource fully automates all open source management processes: component detection; security vulnerability alerts and fixes; license risk and compliance analysis along with policy enforcement; quality review, and new version alerts. It offers a complete suite of control, reporting and management to help software teams manage open source truly effortlessly. For more information about WhiteSource, visit http://www.whitesourcesoftware.com or follow us on twitter: @whitesourcesoft

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Improving Security in a DevOps World
  • Live at: Mar 5 2019 5:45 pm
  • Presented by: Michelle McLean (StackRox), Azi Cohen, (WhiteSource), Cindy Blake (GitLab), Vikram Kapoor (Lacework)
  • From:
Your email has been sent.
or close