Continuous Security: DevOps and Ongoing Authorization

Presented at AppSec USA 2016, Oct. 14, 2016, 10:05 a.m. (40 minutes)

Application security has changed dramatically from even just a decade ago. Today, if you do not build in security and deliver continuously, you are at risk. This is the story of how we have updated our practices to incorporate security at every phase, through the intersection of DevOps and Cybersecurity. The session will touch on lessons learned through real world experience and things you can do to begin integrating security into your DevOps pipeline through the use of ongoing authorization.

Presenters:

• Paula Thrasher
  Paula Thrasher is Director of Digital Services at CSRA. She has 20+ years experience in IT and has spent the last 15 years trying to implement Agile culture in the federal government. Paula's first Agile project was in 2001. Since then, she has lead over 15 programs and projects as an Agile developer, technical lead, Scrum Master or Agile Coach. Her teams have helped two separate federal agencies migrate applications to Amazon AWS GovCloud, and don some other amazing DevOps ninja work along the way. Paula is a proud Carnegie Mellon University Alumni with a B.S. in Statistics, is a Certified Scrum Master (CSM), Project Management Professional (PMP), but prefers learning new things through experience and working with smart people.

Links:

• https://appsecusa2016.sched.com/event/86wW/continuous-security-devops-and-ongoing-authorization

Similar Presentations:

• AppSec USA 2012 / DevOps Distilled: The DevOps Panel at AppSec USA
• AppSec USA 2016 / Glad You Could Join Us: Bringing Security into the DevOps Fold
• AppSec USA 2016 / Moving to the Left: DevOps practices and the changing role of SecOps