4      0

(ISC)² Security Congress 2021 - Career Center & Recordings

1778663 - What should your DevSecOps program look like?


Oct 19, 2021 3:00pm ‐ Oct 19, 2021 4:00pm



Credits: None available.

Description

DevSecOps is a major pillar for a successful security program as organizations are growing their ecosystems through interconnected information systems. The consequences of a poorly implemented program can render organizations insolvent as a single application-level data breach can impact an organization’s reputation, customer retention, and financial performance. Building a DevSecOps program is an insurmountable challenge for many security teams already struggling to meet a plethora of regulatory requirements. This presentation, representing a year of research with security professionals from companies around the world, helps you to understand DevSecOps. We will provide a clear description of what a DevSecOps program looks like based on our research including the systems, processes, governance, team, and environment needed to deliver a well-built DevSecOps program for your organization.

Learning Objectives:
  • Describe what DevSecOps is and how it integrates with DevOps, including the system architecture, governance models, team structures and process integrations.
  • Describe the pillars of a well-built DevSecOps program, including how to measure the program's effectiveness.
  • Describe some of the potential challenges in developing a DevSecOps program.

Speaker(s):

  • Jim Jenkins, M.Sc., Director, Data Asset Protection, Boeing Employees Credit Union (BECU)
  • Dr. Gerhard Steinke, CISSP, Professor of MIS, Seattle Pacific University
Tags: Intermediate

Credits

  • 1.00 - CPE

You must be logged in and own this session in order to post comments.