Title:
The Security Phoenix
Subtitle:
From the ashes of DEVOPS
Synopsis:
The talk will take the audience on a path to integrate security in development covering aspect like SDLC, People and Technology, Metrix, and maturity matrix. The Talk will focus on several aspect like:
• Visibility of vulnerabilities in production
• Traceability of software built and source of the component
• Visualization of vulnerabilities and target (Divide in quarter, Build vs Fix)
• Maturity matrix and path to evolution with KCI
• Advanced concepts like breaking the build, license to operate
If time is available, the talk will explore some additional lesson learned
rough length: Compressed 25+5 min long version 30 min
Audience Take Away:
● How to build a cybersecurity programme with people and technology at the heart
● How and why to trace component and how they are built
● Why visibility in production and traceability is important
● How to set targets for product teams and what to measure in various phases
● How to involve risk assessment and where to apply governance
● Use cases to visualize vulnerabilities
41. Every 2 weeks 1.30 PM UK Time
Cyber #MentoringMonday
Podcast
@FrankSEC42
PUBLIC
42. Cyber Security Awards 2020
Cloud Security Influencer of the Year
Submission – 10 of May 2020 (TBD)
Ceremony 4 July 2020
#CYSECAWARDS20
https://cybersecurityawards.com/
https://cloudsecurityalliance.org.uk
Submit: info@cybersecurityawards.com
Info: Francesco.Cipollone@cloudsecurityalliance.org.ukPUBLIC