DevSecOps, Compliance GRC, and the Future of Application Security - Francesco Cipollone - ASW 177

preview_player
Показать описание
DevSecOps has been traditionally very people centric. It is hard to measure software security and the landscape is becoming increasingly more complex with container, cloud, and infrastructure. Driving an appsec program at scale is often an art that only few can master and the majority of organizations remain uncovered from an appsec perspective. Measuring DevSecOps and evolving risk-based vulnerability management is a must. Bringing along risk people and GRC has traditionally been challenging.

Segment Resources:

#ApplicationSecurity #SecurityWeekly #DevSecOps #Compliance #GRC
  1. Security Weekly - A CRA Resource
  2. api security
  3. application security
  4. cloud security
  5. coding
  6. container security
Рекомендации по теме
DevSecOps, Compliance GRC, 0:34:49

DevSecOps, Compliance GRC, and the Future of Application Security - Francesco Cipollone - ASW 177

The Secure Cloud 0:52:32

The Secure Cloud Cast (E4) | Compliance and Governance in DevSecOps

How to GRC 0:32:28

How to GRC Your DevOps - Susan Allspaw Pomeroy

Compliance 101 and 0:48:59

Compliance 101 and Compliance Automation- Into to DevSecOps for Government Systems- November 2022

DevOps is Right, 0:34:08

DevOps is Right, DevSecOps is Left, Risk & Governance in the Middle: By BMK Lakshminarayanan

At What Point 0:57:15

At What Point Does DevSecOps Become Too Risky for the Business?

How to GRC 0:35:25

How to GRC Your DevOps

At What Point 0:49:29

At What Point Does DevSecOps Become Too Risky for the Business?

Security, Compliance and 1:01:02

Security, Compliance and Risk Management in the SDLC

Solving for DevOps 0:42:17

Solving for DevOps Auditors with Automated Compliance

Security and Compliance: 0:28:47

Security and Compliance: One and the Same | Mark Wireman @ Secure Software Summit 2022

What is GRC 0:02:54

What is GRC | Cybersecurity Telugu

EP 134 - 1:00:05

EP 134 - The Five Pillars Of MLSecOps With Ian Swanson

DevSecOps - The 0:27:09

DevSecOps - The Broken or Blurred Lines of Defense

The Cloudcast #338 0:29:20

The Cloudcast #338 - Governance and DevSecOps

OCB DevSecOps - 0:55:10

OCB DevSecOps - The Broken or Blurred Lines of Defense with John Willis (Red Hat)

EP 104 - 0:45:12

EP 104 - Implementing DevSecOps In Regulated Versus Unregulated Industries With Rohit Parchuri

Day 2: Track 0:36:57

Day 2: Track 11 | DevSecPrivaOps | Why Should You Incorporate Privacy in DevSecOps Operations

DevSecOps: The Broken 0:54:50

DevSecOps: The Broken or Blurred Lines of Defense - John Willis (Red Hat) OpenShift Commons Briefing

Implement ZeroTrust with 0:48:10

Implement ZeroTrust with Dedicated DevSecOps Pipeline

DevOps vs. Compliance: 0:42:20

DevOps vs. Compliance: A Guide to Having it All

Is GRC Engineering 0:57:38

Is GRC Engineering the next DevSecOps? w/ Justin from Klaviyo | S2E1

anecdotes Webinar | 0:47:33

anecdotes Webinar | DevOps and Compliance - How to Build the Right Relationship

Practical Aspects DevSecOps 0:49:01

Practical Aspects DevSecOps like a pro!