How to Implement a DevSecOps Culture in Your Organization
Date and Time
Wednesday Mar 31, 2021
2:30 PM - 4:00 PM CDT
Wednesday, March 31, 2021 at 3:30 PM EDT (2021-03-31 19:30:00 UTC)
Location
Webcast
Fees/Admission
Free
Contact Information
Eddie Neal
Send Email
Description
A conversation with Chaim Mazal, ActiveCampaign CISO, on his teams journey to DevSecOps
Modern development practices have forced organizations to combine development and IT operations under one DevOps umbrella in order to build and release code at a faster rate than ever before. However, due to this newfound developer agility, as well as the widespread use of open source technology in modern applications, companies have found themselves scrambling to keep up with this eye-popping pace of innovation and the amount of risk its introduced.
Join Chaim Mazal, ActiveCampaign's CISO, as he shares his experience in transforming his teams approach to security at each layer of the technology stack, from development to staging and production, and how he used the right tools and practices to share security responsibilities among different teams to scale security throughout the IT organization. In this webinar, Chaim, along with security experts from Rapid7 and Snyk, will walk you through some of the steps he took to implement a DevSecOps culture by:
- Changing the way development and security teams interact
- Choosing the right tools to implement a DevSecOps practice Implementing code dependency checks
- Implementing automated security tests in CI/CD
- Implementing threat modeling and risk assessment in your code logic
Speaker Bios
Chaim Mazal: Chaim Mazal is the Vice President of Information Security at ActiveCampaign, where he oversees the information security organization, including security operations, security product engineering, information technology, and risk and compliance teams.
Gareth Rushgrove: Gareth Rushgrove is a VP of Product at Snyk, working remotely from Cambridge, UK, helping to build interesting tools for people to better secure infrastructure and applications. He has previously worked for the UK Government focused on infrastructure, operations and information security, as well as at Puppet and Docker. When not working he can be found curating the Devops Weekly newsletter, hiking or reading a good book.
Dane Grace: Dane is a Technical Product Manager at Rapid7 who focuses on vulnerability and remediation solutions for modern infrastructure. In his personal time, he is a Brazilian Jiu Jitsu aficionado, avid reader and lover of barbecue in all of its incantations (Texas, Brazilian, St. Louis, Korean, et al.).