- This event has passed.
The Stages of DevSecOps — Writing and Deploying Secure Code
November 14, 2018 @ 6:30 PM - 8:30 PM UTC-6
Insecure code threatens everything from personal privacy to national security. For years, the industry addressed vulnerable code through manual, time-consuming policies, processes, and labor-intensive tools. Waterfall dominated as the methodology for creating a Secure Software Development Lifecycle. While the accepted methodology, its rigidness resulted in lack of adoption, security as an afterthought and vulnerable applications.
Development and Operations (DevOps) presents a paradigm shift. Rigid, step-by-step processes with handoffs and silos of responsibilities are replaced by flexibility and teams working together to achieve a common goal. The natural progression of DevOps is Secure DevOps or DevSecOps.
During the discussion, we’ll take DevSecOps and break it into four manageable stages, with clearly defined security processes in each stage. The Continuous Integration/Continuous Delivery (CI/CD) pipeline will be explored and tied to the four stages, showing how and where automated security is embedded. While an introduction to DevSecOps, the entire CI/CD process will be explored – from a developer committing code to the final application being deployed in a container in AWS.
Chris Sellards is the Senior Security Architect for Harland Clarke Holdings. He frequently lectures at UTSA on topics of Network Security, Risk Management, Cryptography, and Application Security. Currently pursuing a Doctor of Science in Cybersecurity, his dissertation is focused on automated security in the DevSecOps pipeline. He has more than 20 years’ experience in the industry. His current projects are focused on architecting security into multiple DevOps pipelines, supporting different companies in HCH’s portfolio, and a cloud-hosted environment for clients to deploy containerized software.
This is our last meetup for 2018! We will not have a meetup in December as that is the holiday time, but we’ll be back in January! See you all then!