Automation can be used to define and apply security policies throughout the lifecycle of an application. Early steps have focused on automating security scans in the CI pipeline. Setting up the scanners takes minutes; the paradigm shift is the hard part. This session will share barriers that many have encountered along with six steps to start using security-as-code to accelerate DevSecOps.

RSA® Conference, the world’s leading information security conferences and expositions, concluded its 30th annual event, which took place as a fully virtual experience this week. This year’s theme was Resilience, and in honor of all that the cybersecurity industry has accomplished over the past three decades, offered a must-attend celebration of thought leadership and education.


More than 20,000 people registered to view 449 sessions including, keynotes, track sessions, interactive programs, tutorials, seminars, and many special digital-first programs that focused on best practices and innovation. The content covered many of the industry’s most pressing topics, including privacy, machine learning and artificial intelligence, analytics, anti-fraud, policy and government, and risk management and governance.

Security-as-Code to Accelerate DevSecOps, a Practical Guide to Get Started

Conference: RSA Conference 2021

Abstract

Post a comment

Related work

Security as Code: A DevSecOps Approach - Xavier René

Feedback loop in DevSecOps - mature security process and dev cooperation

Follow the White Rabbit: Simplifying Fuzz Testing Using FuzzExMachina