DevOpsDays Boston 2022: Andreas Grabner - DevSecOps by Default: What have, can and must we learn...

Channel:
United States Confreaks
Subscribers:
42,400
Published on ● Video Link: https://www.youtube.com/watch?v=hSbl9oaOfVU


Duration: 35:38
69 views
2

Andreas Grabner - DevSecOps by Default: What have, can and must we learn from Log4Shell?

It’s been a couple of months since Log4Shell ruined many Christmas holidays for developers, architects, ITOps and especially Dev(Sec)Ops teams. How did this incident help us strengthen our software supply chain? How have DevSecOps adopted their delivery and operations orchestration to prevent using vulnerable code or react faster once a new breach is detected?

In this session we cover stories from DevSecOps teams that were on the frontlines when Log4Shell hit. We look into application security approaches and tools to detect vulnerabilities during delivery as well as in production and see how open source projects such as Falco, Keptn and others help DevSecOps teams to enforce a “Secure by Default” policy!



Other Videos By Confreaks


2023-03-01RubyConf Mini 2022: RubyGems.org MFA: The Past, Present and Future by Jenny Shen
2023-03-01RubyConf Mini 2022: Keynote: Learning DNS by Julia Evans
2023-03-01RubyConf Mini 2022: Zen and the Art of Incremental Automation by Aji Slater
2023-03-01RubyConf Mini 2022: Ruby Office Hours with Shopify Engineering by Rose Wiegley, Ufuk Kayserilioglu
2023-03-01RubyConf Mini 2022: Splitwise Sponsor Session: Declare Victory with Class Macros by Jess Hottenstein
2023-03-01RubyConf Mini 2022: Weaving and seaming mocks by Vladimir Dementyev
2023-03-01RubyConf Mini 2022: From Start to Published, Create a game with Ruby! by Cameron Gose
2023-03-01RubyConf Mini 2022: Anyone Can Play Guitar (With Ruby) by Kevin Murphy
2023-03-01RubyConf Mini 2022: The Case Of The Vanished Variable - A Ruby Mystery Story by Nadia Odunayo
2023-01-30DevOpsDays Boston 2022: Thomas Stringer - Zero to Secure: Using Open Service Mesh to Easily...
2023-01-30DevOpsDays Boston 2022: Andreas Grabner - DevSecOps by Default: What have, can and must we learn...
2023-01-30DevOpsDays Boston 2022: Kavitha Govindarajulu - Evaluating Your Toolbox
2023-01-30DevOpsDays Boston 2022: Steve McGhee, James Brookbank - Enterprise Roadmap for SRE
2023-01-30DevOpsDays Boston 2022 - We can’t all be Shaq: why it’s time for the SRE hero... by Malcolm Preston
2023-01-30DevOpsDays Boston 2022: Gad Salner- How to scale a unicorn-building engineering team (and stay sane)
2023-01-30DevOpsDays Boston 2022: Daniel Kim - Achieving 99.99% uptime with Open Source Observability
2023-01-30DevOpsDays Boston 2022: Peter Chestna - Feedback: You don't have to be bad to get better
2023-01-30DevOpsDays Boston 2022: Kam Lasater - How to Fail at Serverless (without even trying)
2023-01-30DevOpsDays Boston 2022: Adarsh Shah - From Infrastructure as Code to Environment as Code: ...
2023-01-16RailsConf 2022 - Diversity in Engineering; a community perspective
2023-01-16RailsConf 2022 - Keynote: RailsConf 2022 - It's been a minute! by Aaron Patterson


Tags:
DevOps
DevOpsDays