Pragmatic steps to reduce your software supply chain risk

Logo
Presented by

Cindy Blake, Senior Security Evangelist at GitLab

About this talk

Recent supply chain attacks, along with the U.S. Executive Order on Cybersecurity, have raised the priority of software security. At the same time, security and compliance teams may feel that security risk is a bit out of control given the rapid evolution of DevOps. With all eyes on secure coding, how do you ensure proper depth and breadth of app sec testing? How do you meet development deadlines without slowing down for security? This talk will address how to best approach modern software security by automating your CI pipeline for simplicity, visibility, and control. You will learn: o What's changed that makes application security and compliance even more challenging? o Redefining the DevSecOps approach to meet these new challenges o 5 key requirements to achieve DevSecOps 2.0

Related topics:

More from this channel

Upcoming talks (4)
On-demand talks (208)
Subscribers (23471)
ISSA is the community of choice for international cybersecurity professionals dedicated to advancing individual growth, managing technology risk and protecting critical information and infrastructure.