2022 Gartner® Magic Quadrant™ SIEM
Get the reportMore
Early on in the "cloud," Werner Vogels made his famous quote "You Build It, You Run It".
With DevOps we learned that this became a mantra for shared responsibility between developers and operations. Operations learned how to process infrastructure as code and participate early in the supply chain of a service's life cycle. Developers learned that they had responsibilities to enable and in some cases operationalize their service.
Now there is a new movement to include and collaborate in a similar way with Security. This is all part of an "everything" shift left ideal. Developers and operations are taught the importance of including security in the stories and all parts of the delivery pipeline including security gates as well as code test gates.
Listen in on this session featuring DevSecOps expert, John Willis, as he goes through an introduction to DevSecOps. We discuss:
About the Speaker:
John Willis is VP of DevOps and Digital Practices at SJ Technologies. Prior to SJ Technologies he was the Director of Ecosystem Development for Docker, which he joined after the company he co-founded (SocketPlane, which focused on SDN for containers) was acquired by Docker in March 2015. Previous to founding SocketPlane in Fall 2014, John was the Chief DevOps Evangelist at Dell, which he joined following the Enstratius acquisition in May 2013. He has also held past executive roles at Opscode/Chef and Canonical/Ubuntu. John is the author of 7 IBM Redbooks and is co-author of the “DevOps Handbook” and the upcoming Beyond the Phoenix Project.
Build, run, and secure modern applications and cloud infrastructures.Start free trial
When delivering customer experiences from the cloud, defending the app (and the data it houses, or the business it represents) is a priority. DevSecOps’ “you build it, you run it, you secure it” mindset helps, especially when all teams are empowered with the info they need to “see it, regardless of where it is!”
What is the tipping point between “cloud-native-like” and “truly cloud-native?” Is it simply adopting new practices, processes, and technologies like containers or serverless? How do you empower your teams to take advantage of the unique features of cloud computing to power more reliable systems, reduce cost, and accelerate innovation?