Back To Schedule
Thursday, August 15 • 2:45pm - 3:30pm
10 Attributes of the DevSecOps Elite *SLIDES AVAILABLE

Log in to save this to your schedule, view media, leave feedback and see who's attending!

We've spent six years studying secure coding practices of DevOps and continuous delivery organizations by surveying over 15,000 IT professionals. We've analyzed their staffing practices, educational priorities, automation choices and process improvements that improve their cybersecurity preparedness. Our study has also uncovered details of where automation fails, awareness falls short and breaches happen. Come participate in this session where we will share the 10 habits practiced by the DevSecOps Elite that you can then apply to -- or further mature within -- your own organization. We will also uncover what our analysis revealed about securing CI/CD pipelines, including what popular Jenkins plug-ins are used for security.

avatar for Derek Weeks

Derek Weeks

Vice President, Sonatype
Derek E. Weeks is the world's foremost researcher on the topic of DevSecOps and securing software supply chains. For the past five years, he has championed the research of the annual State of the Software Supply Chain Report and the DevSecOps Community Survey. Derek is a huge advocate... Read More →
avatar for Hasan Yasar

Hasan Yasar

Dev{Sec}Ops Evangelist, Technical Manager, Adjunct Faculty Member, Carnegie Mellon's Software Engineering Institute
Hasan Yasar is the technical manager of the Secure Lifecycle Solutions Group in the SEI’s CERT Division. His group focuses on software development processes and methodologies, specifically on DevOps and development, and researches advanced image analysis, cloud technologies, and... Read More →

Thursday August 15, 2019 2:45pm - 3:30pm PDT
Room 2008