DevSecOps – It’s A Team Sport

Presented at Diana Initiative 2020 Virtual, Aug. 22, 2020, 10 a.m. (60 minutes)

<p>DevSecOps derives its own name from being an amalgamation of formerly three separate common teams within most IT organizations, <strong>Dev</strong>elopment, <strong>Sec</strong>urity and <strong>Op</strong>eration<strong>s</strong>. With the onslaught of new technologies and methods to build, deploy and secure such solutions, it's become paramount to unite and streamline these traditionally separate activities. This doesn't come without its own set of challenges; from turf wars to knowledge and abilities, with most of the effort trying to wed-up the right puzzle pieces to ensure overall team successes. </p> <p>There’s also no success in this area given to a group of “rock stars” or “prima donnas” but more from “roadies” and “sidemen” who work to make sure the whole show is going to be good rather than try to take center stage. Finding, identifying, and nurturing the staff and talent that is willing to work through the change not only within the IT organization, but are also ambassadors to the rest of the organization to help them through the new ways of exploiting the new ways of integrating technology into business.</p>

Presenters:

• Amélie Koran - Sr. Tehcnology Advocate   as Amelie Koran
  Amélie is a Senior Technology Advocate at Splunk, focused on helping organizations transform, grow and secure themselves in the ever evolving world of technologies and their accompanying challenges. She arrives at Splunk after nearly 25 years as a technologist, from systems administration and engineering to executive technology leadership in various industries, academia, NGOs, and the government. In the last decade, she’s supported various Federal agencies, leading various projects and initiatives, including modernization activities, cybersecurity policy, and security architecture and operations. Often seen “soapboxing” about technology workforce development, training and recruiting policies, practices and techniques, she’s mostly observed providing measured guidance to InfoSec Twitter at @webjedi and her executive take on DevSecOps at AllTheOps.org.

Links:

• https://tdi2020.sched.com/event/doJl/devsecops-its-a-team-sport

Similar Presentations:

• 31C3 (2014) / CAESAR and NORX: Developing the Future of Authenticated Encryption
• Still Hacking Anyway (SHA2017) / Weaponized Social: Understanding and tools to mitigate network-scale violences
• Still Hacking Anyway (SHA2017) / Hack-N-Swap-O-Rama™: One hackers failed project is another's awesome win!