REPLAY: Fast-Tracking Software Assurance

Software teams regularly deal with rapid release cycles, dozens of technologies, and relentless threats. They generally want to incorporate security ways but are often unsure how (or why.) Regardless of the development process, there are common security activities and tools that need to be assimilated. In this edition of Ed TALKS, a panel of three industry experts provide practical tips on improving maturity and making security a natural part of software development. Topics include: - Practical automation throughout development and delivery - How to motivate your team to care about security - Assessing and benchmarking your SDLC maturity - Not so fast: Activities to automate or skip at your own risk Our panelists include: Sasha Rosenbaum: Product Manager, GitHub Throughout her career, Sasha has worked in development, operations, consulting, and cloud architecture. Sasha is an organizer of DevOpsDays Chicago, a chair of DeliveryConf, and a published author. Sebastien Deleersnyder: Founder, Toren Sebastien is the project leader for the OWASP SAMM maturity framework. He is a well-known instructor and threat modeling advocate. Earlier in his career, he served as a security architect for large telcos, banks, and logistics firms. Dinis Cruz: CTO and CISO, Glasswall Dinis is a well-known software security leader. He served on the OWASP board of directors for six years, has trained thousands of people globally, and has written books on cybersecurity and modern software development.