0      0

(ISC)2 Security Congress 2022

2101784 - Plugging the gaps in cybersecurity with a Shift Left strategy

Oct 10, 2022 4:00pm ‐ Oct 10, 2022 5:00pm


The presentation will provide a detailed understanding of the "shift left" approach: what is it; how it evolved; why is it needed; and how is it accomplished. Shifting left refers to the idea of addressing security concerns earlier in the software development lifecycle. It is a modern approach to shifting left that can have a significant impact on risk reduction for cloud- native development teams and help them to strike a healthy balance. The presentation will reference key elements for a successful shift left strategy such as: -Secure coding training for developers -Security in design -Ongoing infrastructure baseline validation -Monitoring It will explain SDLC and OWASP DevSecOps maturity model where security tasks need to be automated and integrated within the development and deployment pipeline.

Learning Objectives:
  • Define the meaning of a shift left approach and why is it needed.
  • List key elements for a successful shift left strategy and methods to accomplish.
  • Understand that by implementing shift left and adopting a DevSecOps mindset, organisations can foster collaboration and knowledge sharing between developers, operations teams and security experts.


  • Parul Khanna, MS CISSP CCSP CISM CRISC CDPSE CCSK , Senior Consultant, Manulife

You must be logged in and own this session in order to post comments.