Building Security In – DevSecOps

Abstract

Many believe that better security comes from robust independent gating, but DevOps has proven that you can safely deploy orders of magnitude faster without human gating. Comcast uses a DevSecOps approach which focuses on automation, speed and team ownership of end-to-end product security lifecycle. It’s agile and developer-focused. It’s about building security in rather than bolting it on.

Learning Objectives:

  1. Learn our seven-part approach, including executive sponsorship, artisanship, SDL, tooling and more.
  2. Understand how and why to focus on DevOps teams, while not leaving others behind.
  3. Find out why security is not just the right thing to do, but how it’s critical to make it the easy thing to do.

Session Info

April 24th, 2019
Location: Salon B
11:30 AM - 12:30 PM
Tags: ,

Speaker

Noopur Davis

Senior Vice President, Chief Product and Information Security Officer at Comcast