Hi [[ session.user.profile.firstName ]]

Lessons Learned by an Agent of Chaos From DevOps Transformations

Is your organization ready to embrace a DevOps mindset? Receive a pragmatic view from an agent of chaos, who’s promoting the goal for a single continuous integration and delivery pipeline, shifting testing, security, code reviews, and other opportunities to improve information sharing and quality to the left, shifting configuration to the right, and most importantly, aiming to delight users with constant value.

Join Willy-Peter Schaub, Software Engineer & Director at AJATO Transformations Limited, as he shares:

-The learnings and epiphanies gathered during DevOps transformations
-How practices such as Shift Left, Shift Right and progressive mindset affects the union of people, process and products
Recorded May 30 2019 29 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Willy-Peter Schaub (Software Engineer, Director at AJATO Transformations Limited)
Presentation preview: Lessons Learned by an Agent of Chaos From DevOps Transformations

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • 10 Tips for Achieving Cultural Change in DevOps Nov 12 2019 3:00 pm UTC 60 mins
    Jeffrey Martin
    DevOps success depends on three things: people, processes and tools. While tools and processes can be easy enough to address, the people part of the equation can be more difficult to tackle. Changing the culture of an organization can be akin to turning a cruise ship midstream. This webinar offers 10 tips to help employees let go of traditional ways of working and embrace DevOps.
  • The Challenges of Scaling DevSecOps Nov 6 2019 6:00 pm UTC 23 mins
    Shiri Ivtsan, Senior Product Manager
    Organizations enjoy the speed that DevOps brings to development and delivery. However, most security and compliance monitoring tools have not been able to keep up, becoming the most significant barrier to continuous delivery.
    Now some good news: you can easily integrate security into your existing processes to solve this challenge.
    In this session, Shiri Ivtsan, Senior Product Manager at WhiteSource, will discuss:
    - Leveraging the DevSecOps approach to help speed up security
    - Scaling security into your agile processes
    - 5 easy ways to start driving DevSecOps in your organization
  • The Next Generation of Application Security Nov 6 2019 9:00 am UTC 59 mins
    Panel Discussion
    Application security is an effective tool for defending against attacks. But as IT infrastructures shift to “software-defined everything” and move to the cloud, traditional appsec models no longer are enough to protect the application.

    This webinar takes a look at how companies are addressing new models to address more dispersed and dynamically connected applications, from traditional web and mobile APIs to containers and microservices.
  • Taking Open Source Security to the Next Level Oct 24 2019 5:00 pm UTC 55 mins
    Senior Director of Product Marketing, Jeff Crum
    Join us for a webinar featuring Forrester VP and Research Director Amy DeMartine to learn more about why open source security has become critical for securing modern applications, the main considerations when evaluating an open source security and license compliance solution and what she sees in store for the future.


    Additionally, WhiteSource Senior Director of Product Marketing, Jeff Crum, will discuss recent analysis of the Software Composition Analysis (SCA) market, including takeaways from The Forrester Wave™: Software Composition Analysis, Q2 2019.
  • Lessons Learned by an Agent of Chaos From DevOps Transformations Recorded: Oct 17 2019 28 mins
    Willy-Peter Schaub (Software Engineer, Director at AJATO Transformations Limited)
    Is your organization ready to embrace a DevOps mindset? Receive a pragmatic view from an agent of chaos, who’s promoting the goal for a single continuous integration and delivery pipeline, shifting testing, security, code reviews, and other opportunities to improve information sharing and quality to the left, shifting configuration to the right, and most importantly, aiming to delight users with constant value.

    Join Willy-Peter Schaub, Software Engineer & Director at AJATO Transformations Limited, as he shares:

    -The learnings and epiphanies gathered during DevOps transformations
    -How practices such as Shift Left, Shift Right and progressive mindset affects the union of people, process and products
  • The Next Generation of Application Security Recorded: Oct 15 2019 60 mins
    Panel Discussion
    Application security is an effective tool for defending against attacks. But as IT infrastructures shift to “software-defined everything” and move to the cloud, traditional appsec models no longer are enough to protect the application.

    This webinar takes a look at how companies are addressing new models to address more dispersed and dynamically connected applications, from traditional web and mobile APIs to containers and microservices.
  • 360° Kubernetes Security: From Source Code to K8s Configuration Security Recorded: Oct 8 2019 52 mins
    Shiri Ivtsan, Senior Product Manager
    Kubernetes has become the default way for many organizations to scale and orchestrate their use of containers. However, organizations are starting to find themselves needing to take the necessary steps to protect their containers. Automating security checks throughout the development life cycle can help reduce risk and allow organizations to develop and deploy securely.

    Join Shiri Ivstan, Senior Product Manager at WhiteSource and Yaniv Peleg Tsabari, Senior Director of Product Management at Alcide, as they explore the world of security in Kubernetes and discuss:

    The security risks associated with open-source code and Kubernetes environments
    Supply Chain: Continuous Security throughout the CI/CD pipeline
    Security aspects throughout the development cycle, such as Image Scanning, Image Assurance, K8s Configuration hygiene and more.
    How to automate policies with respect to the above techniques throughout the CI/CD pipeline in order to facilitate more secure application deployments.
  • What's New With WhiteSource - September Update Recorded: Sep 18 2019 31 mins
    Shiri Ivtsan, Senior Product Manager
    New and exciting product updates!
    Join our Product Manager, Shiri Ivtsan, and watch how our latest product updates can improve your WhiteSource experience.

    In this 45 minute session, we'll be covering the following product updates:

    Unified Agent Detect Mode: Automatically create a configuration file based on your scanned libraries and files
    Library Security Trends: Understand your library's security trends across different versions, color-coded according to the severity
    Advanced Search Option: Search for vulnerabilities and libraries using the new advanced search option
    Using Javascript? WhiteSource Prioritize is now available for Javascript
    Integration with ThreadFix: View the results of SAST, DAST and SCA solutions on one dashboard
  • How DevSecOps Automates the Way for Secure Open Source Usage Recorded: Sep 17 2019 36 mins
    Jeff M. (Sr. Dir. of Product @ GitHub), Rami S. (CEO @ WhiteSource) & Rami E. (Sr. Dir. of Product Mgmt @ WhiteSource)
    Open source software has become the building block in the applications we interact with nowadays.

    The good? Thanks to the time and cost efficiency it brings, organizations are able to facilitate productivity and innovation at a faster pace than ever. The bad (or rather, less good)? Many organizations are grappling with the security aspect when it comes to their open source usage. In order to solve this, organizations should turn to practices such as DevSecOps.

    Join Jeff McAffer, Sr. Dir. Product, GitHub, Rami Sass, CEO at WhiteSource, and Rami Elron, Senior Director of Product Management at WhiteSource, as they discuss:

    -The challenges surrounding the security of open source code;
    -Which role DevSecOps practices play with respect to your open source usage; as well as
    -How technologies such as Software Composition Analysis can help automate and shift left your open source security.
  • Deep Dive into Containers Security Recorded: Sep 12 2019 19 mins
    Shiri Ivtsan
    Many organizations are using containers to develop and manage their applications. Containers enable development teams work faster, deploy more easily and efficiently, and operate at a much larger scale. However, there are many security measures that need to be taken across the entire software development lifecycle, especially when it comes to open source security.
    In this session, Shiri Ivtsan, Product Manager at WhiteSource, will discuss:
    1) The complexity and security challenges with containers
    2) The greatest risks when deploying containers
    3) The three steps to take before shipping a Docker container
    4) How to automate your container security process
  • [Panel] Top 10 Tips for Achieving Cultural Change in DevOps Recorded: Aug 27 2019 60 mins
    Panel Discussion including: Jeffrey Martin (Director of Product, WhiteSource)
    DevOps success depends on three things: people, processes and tools.

    While tools and processes can be easy enough to address, the people part of the equation can be more difficult to tackle. Changing the culture of an organization can be akin to turning a cruise ship midstream.

    Join this webinar to hear the top 10 tips to help employees let go of traditional ways of working and embrace DevOps.
  • Securing Container-Based Applications at the Speed of DevOps Recorded: Jul 30 2019 59 mins
    Carmen Puccio (Solutions Architect, AWS) & Shiri Ivtsan (Product Manager, WhiteSource)
    Thanks to containerization and automation, applications are being developed and delivered faster than ever. With tools such as AWS ECR, developers are able to store, manage and deploy Docker container images without having to worry about operating their own container repositories or scaling the underlying infrastructure. With this, however, arise challenges around managing the security and compliance aspect of your container images. With tools such as WhiteSource, developers are able to manage the security of their containers and container images with no impact on agility and speed.

    Join Shiri Ivtsan, Product Manager at WhiteSource and Carmen Puccio, Solutions Architect at AWS, as they discuss the following:

    - Effectively managing and deploying your container images
    - Gaining full visibility into your container images
    - Building and automating security into each layer of the container environment to ensure a continuous process throughout the SDLC
    - Demonstrating a live example using a vulnerable container image
  • PCI Software Security Framework: All You Need to Know for Your AppSec Strategy Recorded: Jul 25 2019 57 mins
    Alexei Balaganski (Lead Analyst at KuppingerCole)
    If your organization is developing a payment app or even just using one in your product, then this webinar is for you.

    The Payment Card Industry (PCI) Security Standards Council recently released a new security framework to replace the previous standard (PCI PA-DSS). The new framework is set to better address the changes that the software development industry has seen in the past few years. Agile and DevOps methodologies, cloud and containerized environments and widespread open source usage have become the new normal and with this, present new AppSec challenges. To ensure that users of payment apps remain safe, the new framework aims to lay a substantial value on continuous application security.

    Join Alexei Balaganski (Lead Analyst at KuppingerCole) as he discusses:

    - the new framework and standards, and the difference between them and the previous version
    - the practical steps organizations need to take in order to follow the new framework
    - how organizations can leverage automated vulnerability management tools to ensure application security and compliance with the new standards
  • From Zero to Hero: Continuous Container Security in 4 Simple Steps Recorded: Jul 9 2019 57 mins
    Shiri Ivtsan, Product Manager at WhiteSource
    Containers are shaping the way organizations are developing and managing applications nowadays. However, many are not always fully aware of the measures that need to be taken across the entire software development lifecycle, especially when it comes to open source security aspects. The mindset of securing our applications needs to be shifted – to continuous security. In this session, Shiri Ivstan, Product Manager at WhiteSource, will discuss:

    1) the main security challenges organizations face when using containers;

    2) the most common layers in a typical container deployment; and

    3) 4 simple steps to build security into each layer.
  • How DevSecOps Automates the Way for Secure Open Source Usage Recorded: May 30 2019 37 mins
    Jeff M. (Sr. Dir. of Product @ GitHub), Rami S. (CEO @ WhiteSource) & Rami E. (Sr. Dir. of Product Mgmt @ WhiteSource)
    Open source software has become the building block in the applications we interact with nowadays.

    The good? Thanks to the time and cost efficiency it brings, organizations are able to facilitate productivity and innovation at a faster pace than ever. The bad (or rather, less good)? Many organizations are grappling with the security aspect when it comes to their open source usage. In order to solve this, organizations should turn to practices such as DevSecOps.

    Join Jeff McAffer, Sr. Dir. Product, GitHub, Rami Sass, CEO at WhiteSource, and Rami Elron, Senior Director of Product Management at WhiteSource, as they discuss:

    -The challenges surrounding the security of open source code;
    -Which role DevSecOps practices play with respect to your open source usage; as well as
    -How technologies such as Software Composition Analysis can help automate and shift left your open source security.
  • How SAP Integrates License Compliance & Security Into Their DevOps Pipeline Recorded: May 30 2019 23 mins
    Stefan Gustafsson, Global Technology Legal Compliance, SAP & Shiri Ivtsan, Product Manager, WhiteSource
    Gone are the days where open source components were only used by individual developers, start-ups or small corporations. Today, even the biggest corporate giants have realized the numerous benefits open source usage brings, thereby openly embracing this as part of their software to help them focus their efforts and push more code out of the door faster.

    Join Shiri Ivtsan, Product Manager at WhiteSource, as she interviews WhiteSource’s customer, Stefan Gustafsson from SAP, to discuss:

    - How SAP perceives open source usage, thereby discussing its benefits and challenges;
    - SAP’s process of managing open source components before having an open source management solution in place; and
    - How SAP managed to successfully integrate automated license compliance and security into their DevOps pipeline.
  • Lessons Learned by an Agent of Chaos From DevOps Transformations Recorded: May 30 2019 29 mins
    Willy-Peter Schaub (Software Engineer, Director at AJATO Transformations Limited)
    Is your organization ready to embrace a DevOps mindset? Receive a pragmatic view from an agent of chaos, who’s promoting the goal for a single continuous integration and delivery pipeline, shifting testing, security, code reviews, and other opportunities to improve information sharing and quality to the left, shifting configuration to the right, and most importantly, aiming to delight users with constant value.

    Join Willy-Peter Schaub, Software Engineer & Director at AJATO Transformations Limited, as he shares:

    -The learnings and epiphanies gathered during DevOps transformations
    -How practices such as Shift Left, Shift Right and progressive mindset affects the union of people, process and products
  • Security vs Developers: How to Make DevSecOps Work Together Recorded: May 30 2019 46 mins
    Simone Curzi (Principal Consultant at Microsoft) and Tom Shapira (Application Team Lead at WhiteSource)
    DevSecOps has taken the world by storm. Ever since the DevSecOps philosophy stepped into the limelight in the past few years, a growing number of organisations are trying to ensure their businesses are set up with the security in mind (and practice) from the get-go.

    In theory, the concept is great. In practice? Less so, given that the objectives and mindset of developers and security teams completely differ. While Security’s objectives are focused on ensuring secure SDLC from start to finish, developers are focused on software development and meeting their deadlines. Despite both aspects being equally important, these teams are struggling to find a common ground.

    So how can these teams be better aligned? Join Simone Curzi, Principal Consultant at Microsoft, and Tom Shapira, Developer Team Lead at WhiteSource, as they discuss:

    - What causes the gap between Security and Development teams with respect to Security objectives
    - How Developers can embrace Security (and DevSecOps practices as a whole) in a way that will ultimately satisfy both teams
  • Do Your Pipelines Remember?They Must If You Want to Go Fast With Static Analysis Recorded: May 30 2019 29 mins
    Jimmy Rabon (Product Manager at Micro Focus)
    All static analysis tools produce false positives, and often require developer context to determine exploitability of a security risk. Automating a static scan is usually straightforward but building automation workflows around SAST findings require that your Pipelines become smarter over time.

    Optimizing the data provided by SAST tools is an often overlooked aspect to integrating SAST tooling into the CI / CD pipeline but it is required to be successful.

    Come learn from Jimmy Rabon, Senior Product Manager at Micro Focus, about best practices for DevSecOps / SAST integration and about how machine learning can help us predict the future, based on our past.
  • Container Security at the Speed of DevOps Recorded: May 30 2019 45 mins
    Tim Chase (Director of Information Security at Healthstream)
    Containers are becoming more popular, but how do you deal with the security challenges of using containers? You have to secure the application, the code, the web server and the host itself. And how do you do this at the speed of DevSecOps? Join Tim Chase, Director of Information Security at Healthstream, as he talks about containers, why they are complex to secure and provides actionable insights on how to start the process of securing them.
An open source security and licenses management solution
WhiteSource allows engineering, security and compliance officers to effortlessly secure and manage the use of open source components in their software, allowing developers to focus on building great products. WhiteSource fully automates all open source management processes: component detection; security vulnerability alerts and fixes; license risk and compliance analysis along with policy enforcement; quality review, and new version alerts. It offers a complete suite of control, reporting and management to help software teams manage open source truly effortlessly. For more information about WhiteSource, visit http://www.whitesourcesoftware.com or follow us on twitter: @whitesourcesoft

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Lessons Learned by an Agent of Chaos From DevOps Transformations
  • Live at: May 30 2019 8:00 pm
  • Presented by: Willy-Peter Schaub (Software Engineer, Director at AJATO Transformations Limited)
  • From:
Your email has been sent.
or close