Securing Fast (and Furious) DevOps pipelines

Presented at BSidesLV 2019, Aug. 7, 2019, 6 p.m. (25 minutes)

You are looking for a way to continuously check the security of your Web/Mobile application before pushing new code to the production ?

The talk explain how to design and create a Disposable, Agile, and Scalable security automation tool set according to your security business requirements. The idea is to convert security tooling into micro services, and deploy them into a Kubernetes cluster.

This talk provide also some pitfalls to avoid in your journey to build a secure software supply chain.

Presenters:

• Abdessamad TEMMAR
  Abdessamad Temmart is an information security consultant and App Sec Engineer. He worked through a variety of sources to provide security professional services to clients. Abdessamad is also a member of the OWASP Proactive controls Project, where he contributes in the update of his Top-Ten document, and also a co-author of the Mobile Security Testing guide.

Similar Presentations:

• AppSec USA 2017 / Hands-on Security in DevOps and Application Security Automation Workshop (2 of 2 days)
• SOURCE Seattle 2017 / Scaling Security With Kubernetes
• AppSec USA 2017 / Hands-on Security in DevOps and Application Security Automation Workshop (1 of 2 days)