DOES US 2021 has ended
Tuesday, October 5 • 11:50am - 12:20pm
Making It Easier to do the Right Things: Govern, Measure and Audit DevSecOps

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
DevSecOps is a more than just getting security testing integrated into a pipeline and using the results to influence flow. Real success with DevSecOps comes when you are able to identify and measure critical aspects of your risks as well as your security controls and functions. It means that you have governance that enables and encourages the right behaviors – not just inhibits bad ones and you have an audit function that can measure this success. It also means you are able to incorporate and include security related information from all parts of the SDLC – including threat, design, testing and at runtime.

Many places have achieved higher degrees of automation and education within their DevSecOps initiatives, however this needs to be an improving and continuous cycle. Taking it to the next level involves intensify these efforts with accurate threat analysis, secure design, measuring, governance and audit. Join us as we share insights on how organizations are moving beyond DevSecOps and more towards real Continuous Security.

avatar for Dragan Pleskonjic

Dragan Pleskonjic

Senior Director of Application Security, IGT
Dragan Pleskonjic is the Senior Director of Application Security at IGT (formerly GTECH). In his current role, he directs, coordinates, and oversees application security efforts on the global organization level.Dragan is a well-known expert and influential strategic thinker in... Read More →
avatar for Colin Bell

Colin Bell

CTO AppScan, HCL Software
Colin has over 30 years of IT experience. Over the past 18 years he has specialized his skills in Application Security and the deployment of the AppScan portfolio to customers worldwide. His current role is within HCL Software team as the AppScan CTO.
avatar for Rob Cuddy

Rob Cuddy

Application Security Evangelist, HCL
Rob is currently a Global Application Security Evangelist for HCL providing thought leadership for application security, DevOps and DevSecOps initiatives, and is one of the hosts of the Application Paranoia podcast. Prior to this role, Rob was with IBM for 14 years with roles in Application... Read More →

Tuesday October 5, 2021 11:50am - 12:20pm CDT
Track 2