fbpx

SANS Cloud & DevOps Security Summit, November 4—11, 2019

Event date

November 4—11, 2019


Our CTO John Steven will be delivering the keynote at the SANS Cloud & DevOps Security Summit, 11/4 @ 9:15.

Shift RIGHT to Fix Bugs Earlier: Security in a DevOps World

Vendors and firms do a lot of DevOps ‘in name only’ because it gets them in the cool club. Those really changing their culture are fundamentally changing their risk management paradigm – from one of proactive governance through security assurance to one of continuous collection of security telemetry and resilient delivery pipelines. What does that mean in practice? This presentation provides a software security framework and conclusions resulting from a survey of twenty luminary organizations practicing what they preach in DevOps culture. We will explore the tools and activities people have come to rely on, the changes to staffing security and aligning them with development and the remaining challenges that impede scale.

Technically, content will focus on those security activities and tools DevOps shops _actually_ use and get value from, based on data from the aforementioned survey of twenty luminary organizations. As compared to how traditional shops address vulnerabilities, survey data tends towards real-time telemetry of cloud configuration, container integrity, and user/system behavior. Vulnerabilities themselves tend away from the “OWASP Top 10” and towards account fraud, asset theft and platform abuse. The audience will walk away with a better understanding of, and ideally different perspective on, security tools and activities available to them

Read more


Demo Videos

5-Min Demo Video: A Single Source of Truth on AppSec Risk with ZeroNorth DevSecOps Analytics & Reporting

The key to reducing AppSec risk is pretty simple. It all starts with AppSec visibility and everyone looking at the same data. AppSec visibility data provides ...

Watch Now

Webinars: On-Demand

AppSec Risk: You Can’t Manage What You Can’t Measure

The key to reducing AppSec risk is pretty simple. It all starts with AppSec visibility and everyone looking at the same data. AppSec visibility data provides ...

Watch Now

Latest Events

Black Hat 2021

Black Hat 2021, July 31-August 5

Black Hat 2021 has a jam-packed agenda, complete with a full AppSec track. And the ZeroNorth team is ready to connect with you and discuss how ...

View Event
Shifting Left

Shifting Left 2.0, June 22-23, 2021

 SHIFTING LEFT 2.0 is taking place June 22 and 23, DevOps and security thought leaders will come together to discuss the latest trends, best practices and the future ...

View Event

The ZeroNorth DevSecOps platform offers options for your DevSecOps journey—getting started with AppSec, finding enterprise visibility or fully integrating security into DevOps.