DevSecOps is a major pillar for a successful security program as organizations are growing their ecosystems through interconnected information systems. The consequences of a poorly implemented program can render organizations insolvent as a single application-level data breach can impact an organization’s reputation, customer retention, and financial performance. Building a DevSecOps program is an insurmountable challenge for many security teams already struggling to meet a plethora of regulatory requirements.
This presentation, representing a year of research with security professionals from companies around the world, helps you to understand DevSecOps. We will provide a clear description of what a DevSecOps program looks like based on our research including the systems, processes, governance, team, and environment needed to deliver a well-built DevSecOps program for your organization.
Describe what DevSecOps is and how it integrates with DevOps, including the system architecture, governance models, team structures and process integrations.
Describe the pillars of a well-built DevSecOps program, including how to measure the program's effectiveness.
Describe some of the potential challenges in developing a DevSecOps program.
Director, Data Asset Protection,
Boeing Employees Credit Union (BECU)