With most organizations embracing the journey of DevOps, security practices still follow the same traditional approach. Security practices in the time of DevOps discipline need to catch up and scale as well.
While there is active adoption of continuous integration and continuous development (CI/CD) in software development life cycles, current security practices need to change and adopt the culture of infusing security in every stage of DevOps, thereby making security practices an integral part of the DevOps discipline.
In his talk, Toufiq would like to tell a tale of implementing DevSecOps discipline, bust some myths, common challenges and how to overcome them via cultural changes, automation, security as code, key performance indicators, etc. Toufiq will supplement his talk with real-world case studies that will help convey the benefits that could be achieved via DevSecops discipline.