Name: DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?
Start: 2022-10-18T18:00:00Z
End: 2022-10-18T18:00:25.000Z
Location: BrightTALK
Rating: 5

Finally, the intelligence, agility, and security you need to create innovative digital experiences customers trust.

“Complexity and Change Fatigue" – these are the new curveballs leaders need to catch. 

Dive into The State of DevOps 2023 Insight Report! We've got some eye-opening tidbits about burnout and its ripple effects on team performance and delivery.  

Join us for a candid panel conversation. The report's writers, together with experts in DevOps and AI, will dive into strategies to move a culture that enhances team environments, creates an innovative spirit, and improves developer experience. 

• How to deal with the effects of "complexity and change fatigue"  
• What does a “happy developer’s team” mean? 
• How to keep the team energy up and burnout down

Navigating Complexity and Change Fatigue: Strategies from the DevOps 2023 Report

As digital transformation sweeps across the Financial Services industry, enterprises are grappling with increasing challenges – from maintaining stellar customer service amid growing user bases to ensuring ironclad security for sensitive customer information. The need for efficient, secure, and rapid software delivery has never been greater.

In this webinar, we will delve into real-world case studies of major financial institutions that have conquered these challenges by adopting an AI-powered DevSecOps platform.

—See how a major US insurance and financial services company is using enterprise agile planning at scale to drive project success and measure OKRs and value delivered.
—Learn how a major US bank standardized its development process, built team consistency, and increased productivity across 1000s of developer teams through orchestration and automation.
—Discover how a European bank slashed a two-day process down to less than two hours and built an effective CI/CD pipeline with only a 10-person team.
—Understand how other leading financial institutions are leveraging predictive intelligence to accelerate their time to market, reduce incidents, and boost productivity.

Overcoming Digital Disruption: Financial Services Success Stories

Enterprises across industries continue to push mobile applications into their customers’ hands. Unfortunately, each of those apps contain a working example showing how to access back-office assets.

The real question is: What do we know about the security posture of those applications? Unfortunately, very little. While spend on perimeter security and SIEMs has been growing faster than inflation for years, relatively little is invested in protecting and monitoring apps that live in the wild, outside of the security perimeter.

That changed in August 2023 when we released our 2023 Application Threat Report.

Watch this webinar where we’ll reveal the highlights of the report, including:
—The odds that any mobile/web/desktop application will be attacked
—The odds of attacks on apps by industry
—The most common types of attacks
—The types of platforms that are attacked most often
—Ways to protect and monitor apps

2023 Application Threat Report

As digital transformation sweeps across the Financial Services industry, enterprises are grappling with increasing challenges - from maintaining stellar customer service amid growing user bases to ensuring ironclad security for sensitive customer information. The need for efficient, secure, and rapid software delivery has never been greater.  

In this webinar, we will delve into real-world case studies of major financial institutions that have conquered these challenges by adopting an AI-powered DevSecOps platform. Your key takeaways will include how:

- A major US insurance and financial services company is using enterprise agile planning at scale to drive project success  

- A major US bank standardized its development process and increased productivity  

- A European bank slashed a two-day process down to less than two hours 

- Other leading financial institutions are leveraging predictive intelligence to accelerate their time to market

The hype around AI is deafening and reaching the point of driving organizations to distraction. Cutting through the noise to understand the true value AI brings is a challenge as the term is being overly used as an attention grabber. That said, there are many real-life, practical AI and ML use cases that software organizations can leverage – today.

Implementing, adopting and scaling up the use of AI across the software development lifecycle can seem risky, expensive, and potentially disruptive. But it doesn’t have to be!

Join us for this webinar where we will:
• Explain the 3 pillars of an AI-centric approach to software development
• Show how AI-ML powered insights use the data generated by software development to derive predictive outcomes around Change Risk Prediction and Flow Acceleration
• Demonstrate how automation can significantly accelerate your software delivery workflows 

Join us and learn how to get your enterprise AI-ready!

The 3 Pillars of AI – Practical Use Cases you can Leverage Today

Join us for a chat with our Agile experts as they discuss key takeaways of the 16th Annual State of Agile report, why it matters, and how your organization may already be ahead of the curve for the next level of business transformation – value-based delivery.

Learn the basics of value-based delivery and how to:
* Visualize concept to customer process to determine flow of value, set strategic direction, and gain enterprise-wide transparency
* Connect disparate work streams into an optimized delivery engine focused on producing business and customer value
* Measure against KPIs, uncover risks and opportunities, and make data-driven decisions to stay the course or quickly pivot to address a market or business change

What's Trending in Scaled Agile in 2023 - Value-based Delivery

AI-powered DevSecOps for the enterprise is not just another trendy term; it is the catalyst for scaling and accelerating innovation across the enterprise. Learn about the 3 pillars of enterprise AI in this interview with Derek Holt, CEO of Digital.ai, by Alan Shimel of TechStrong TV.

AI-Powered DevSecOps for the Enterprise

Efficient Agile and DevOps Practices have made mobile, web, and desktop apps from Financial Services companies more ubiquitous than ever. While these efficiencies greatly enhance the customer experience, they also present an enticing attack surface to threat actors.

Join us for an ethical hacking seminar where you’ll learn:

-Why threat actors specifically target financial services applications
-The top tactics, techniques, and practices threat actors will use in 2023 and beyond
-How DevSecOps defense-in-depth protects your apps and organization from attacks
-The benefits of obfuscation, anti-tamper, and RASP (Runtime App Self-Protection)

Ethical Hacking: The Future of Attacks on Financial Services

Remember the time your release caused a major failure? That moment when you were trying to figure out what happened and fix it as soon as possible? It’s one of those situations you want to prevent! And it just gets more complex as you need to deploy to multiple environments like cloud, on-prem, VMs and containers.

The fact is that enterprises have yet to master the art of transparency throughout their DevOps pipeline to gain efficiency, reduce failure and recover faster.

Join our webinar, where Charitra Agrawal, Director of Product Management and John Kantirakis, Sr. Solution Engineer, will show you how to predict the unpredictable! We’ll help equip you with AI-powered predictive data that empowers you for timely deliveries and fast risk detection. It’s time to get smarter and reduce the headaches and make your DevOps “continuous.”

In this webinar you will learn how to:
* Prevent release delays by proactively understanding the release dependencies and their risks
* Predict the probability of change failure with the change credit score and give a fast pass to low-risk changes
* Remediate problems faster with data that correlates application releases with incidents and production events

Continuous Delivery on Multi-Cloud: Predicting the Unpredictable

Did you know that 55% of apps were run in unsafe environments or with modified code? Don’t let your application become another statistic!

The DevSecOps model seeks to unite security and DevOps with the shared goal of rapid and secure software delivery. A powerful aspect of this approach is Application Hardening – the innovative practice of obfuscating code, monitoring apps in the wild, and giving apps the ability to react to attacks.

Watch our Digital.ai webinar with guest speaker Katie Norton, IDC Senior Research Analyst renowned for her expertise in DevSecOps, to discover the secrets of securing your applications in today’s ever-evolving threat landscape. Katie will also discuss how to:

-Improve security posture with build-time application hardening without burdening developers
-Gain visibility into potential attacks through tampering protections
-Empower applications to automatically react to attacks with Runtime Application Self-Protection (RASP)
-Integrate app hardening with DevOps processes

Application Hardening as Part of a Holistic DevSecOps Strategy

Congratulations on the new release! And you released it on time? Good for you! Was it aligned to business objectives or customer needs? If the answer is “I don’t know,” then it’s time to start thinking about modernizing and scaling your release initiatives.

There’s no reason why you need to wait until a release is dropped to know if it’s meaningful and if quality and value were delivered. Your problem is that you’re blind to what’s happening during the CI/CD process, making you unsure if technical teams are working toward delivering quality and value at release, or just delivering “lots of stuff” on a deadline. Releases don’t matter if they don’t add value.

In this webinar, we will show you how to:
* Ensure high-value tasks are being prioritized and worked on for this release and future releases
* Get real-time feedback from your DevOps toolchain to pinpoint problems that could delay a release
* Know you’re doing the right thing at the right time, all the time

Getting into the Flow: Finding Out if you Released the Right Things

Did a feature fail to make it into production and throw a curveball to a critical business initiative? How do you deal with that?

To avoid unexpected curveballs, it’s essential to have the right data at hand, so you can predict areas of risk in your application development and take the right actions to ensure your promises are delivered.

Come uncover the path to become more confident about application delivery! By learning how to utilize Flow Metrics, you can reduce losses, boost productivity and gain insight into timely deliverables. Join us for an opportunity that promises efficiency gains guaranteed – less frustration included.

What you will get from this workshop:
* Working session to pinpoint your key challenges for agile development
* Exploring which Flow Metrics can help you to solve your challenges
* See a demo of the Digital.ai Predictive Intelligence Flow Acceleration Metrics
* Get advice on implementation strategies tailored to your organization’s needs

Flow Metrics: What Metrics to Consider and Implementation Tips

Over 3,000 Agile community members shared their experiences over the past year to bring to you the 16th State of Agile Survey results. But what does it all mean and how does it impact the future of people, process, and tools?

Join Joyce Tompsett, Director, Analyst & Public Relations, at Digital.ai and Marc Danziger, Senior Director, Agile Delivery at Eliassen Group as they break it all down and walk through:

* The survey findings, trends and what they mean to the Agile community
* Key best practices and areas of improvement in scaling agile for digital transformation
* What type of metrics Agile teams are adopting to better align to business needs and objectives

The 16th State of Agile Report & the Rise of Business Metrics

Application Developers are increasing taking the “DevSecOps” ethos to heart. They are realizing that security is not just something that gets bolted onto apps or around networks. Instead, security needs to be built into the applications that they create. While many have turned to SAST solutions to identify vulnerabilities such as Log4Shell in Log4J, others rightfully wonder how to protect the code that they write themselves, code that – by definition – contains working examples of how to penetrate the security perimeter that their InfoSec colleagues have put in place.

This webinar shows:

* How threat actors reverse engineer applications
* How a “Protection Blueprint” secures applications
* What unobfuscated and disassembled machine code looks like to a threat actor
* How obfuscated machine code makes the threat actor’s job more difficult
* What anti-tamper measures do to prevent reverse engineering of applications

How to Build a Blueprint for Secure Software

You know protecting your apps is critical. How can you take it to the next level? Hear straight from our security experts! Join us for an interactive session where we will cover:

- Benefits of Obfuscation/Anti-Tamper/RASP (Runtime App Self-Protection)
- Best practices of Implementation of Guards
- Environmental guards
- Dynamic instrumentation toolkit
- Actual code manipulation
- Benefits of layering
- Benefits of changing guards release to release
- Demonstration of App Aware

How to Implement Threat Monitoring for Application Security

“If you do something three times, you have a strong argument for automating. We do things thousands of times and want a dependable, deterministic outcome every time.”
– Neale Foulds, NBI

Neale Foulds had a significant challenge when He joined National Broadband Ireland (NBI) as a Release and IT Change Manager. NBI was on the journey to roll out broadband covering 96 percent of Ireland’s land, and Neale had to remove any risks inherent to manual application deployment while also managing release activity in the most efficient way possible.

Watch this webinar with Neale, and learn more about his journey, challenges, and how he changed the game by implementing Continuous Delivery “Right.”

• Successfully implementing continuous release and deploy can be challenging
• Here how one company changed the game by implementing Continuous Delivery “Right”
• National Broadband of Ireland has overcome significant obstacles to meet their customer needs

Continuous Delivery Improves App Rollout for National Broadband Ireland

Agile processes are being implemented and adopted at a rapid pace, with the focus on enabling the delivery of high-quality web and mobile apps at speed and at scale. And with the use of scrum as an agile development methodology, continuous testing is now integral to the development lifecycle. 

How do teams align agile development goals with the testing process to ensure that tests are created, verified, and saved to guarantee that your software is always in a releasable state? 

Tune into this webinar to view a product demo of Test Manager and see how it puts the power of test creation and validation in the hands of any persona, even those without coding skills, to close any skills gaps.

Discover:
• How to use Test Editor as an essential piece of software development and testing
• The core functional components 
• How uniting test management with agile practices will increase collaboration and efficiency

Build, Validate, Execute: Connect Agile requirements with Testing results

Resiliency is a core topic in OWASP’s Mobile Application Security Verification Standard. What’s the key context to know? Dan Shugrue of Digital.ai discusses how to deepen a DevSecOps program by training application owners in code obfuscation, anti-tamper, RASP and monitoring.

In an interview with Information Security Media Group, Shugrue discusses:

-What “deepening” DevSecOps actually means
-The role of resiliency in OWASP’s MASV Standard
-What product owners need to be taught now to help meet resiliency requirements

Use Code Obfuscation and App Monitoring to Protect your Apps

Process Intelligence unlocks the potential of AI and automation in ITSM

Leveraging AI in DevOps and IT Service Management

Accelerating Service Management Automation via Next Gen AI-Assisted Operations

Gain 360° Visibility for Modern App Performance: Deliver an Amazing UX

Next Gen DevSecOps: The Criticality of Software Supply Chain Security in SDLC

Managing Networking and Connectivity

AI Security in ITSM: AI Powered Systems & Closing Gaps in Vulnerabilities

Whenever your organization creates and delivers mobile applications to either employees or customers, they are essentially also delivering a blueprint for bad actors to access your organization’s sensitive data.

As an application owner or product manager, you most likely are aware of the concept of DevSecOps and may have already implemented some best practices to build security into the applications you ship. At the same time, you might be wondering if you are devoting too much—or not enough—time to build security in your CI/CD life cycle, and you may not know which practices are actually the “best” practices.

This webinar describes the existing threat and security landscape and explores how you can take advantage of the latest DevSecOps trends to build security into your mobile applications directly, quickly and easily.

DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?

SecOps

Security

DevOps

Cyber Attacks

Enterprise Applications

Developers

Security Awareness

DevSecOps

Mobile Applications

Application Security

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?

Presented by

About this talk

More from this channel