Irene Comalada – DevSecOps, stay away from being in the news

Testing Security Automation

Learn how to prioritize security in your development cycles, automate testing, and prevent attacks with DevSecOps, a journey that requires people, process, and technology to stay ahead of threats and avoid being in the news.

Key takeaways
  • Security is for everyone, not just security teams.
  • DevSecOps is essential to prevent attacks and ensure continuity.
  • Code reduction is a vital step in reducing vulnerabilities.
  • Automate security testing to ensure code quality.
  • Focus on people, process, and technology to improve security.
  • Plan for risk assessment and continuous improvement.
  • Make security a priority in development cycles.
  • Ensure transparency and openness in security processes.
  • Use the right tools and technologies to improve security.
  • Make continuous testing and improvement a part of the culture.
  • Stay away from being in the news due to security breaches.
  • DevSecOps is not a destination, but a journey.
  • Focus on three factors: People, Process, and Technology.
  • Continuous improvement and training are essential.
  • Prevention is better than cure, so prioritize security.
  • Security is not just about technology, but also about people and process.
  • Continuous testing and evaluation are crucial.
  • Authentication and authorization are critical.
  • Contextualize security for each organization and industry.
  • Security is a shared responsibility, not just for security teams.
  • Awareness and understanding are key to improving security.
  • Security must be integrated into the development process.
  • Automate security testing and vulnerability management.
  • Plan for recovery and continuity in case of attacks.
  • Use the right tools and technologies for security.
  • Prioritize security in the development cycle.
  • Focus on people, process, and technology to improve security.
  • Continuous testing and improvement are essential.
  • Stay vigilant and proactive in security efforts.
  • Security is a journey, not a destination.
  • Plan for risk assessment and continuous improvement.
  • Prioritize security in the development cycle.
  • Continuous testing and improvement are essential.
  • Stay away from being in the news due to security breaches.

More talks

37C3 - Apple's iPhone 15: Under the C

How to Build a Distributed & Secure Database Ecosystem with PostgreSQL - Trista Pan - PGCon 2022

Craig Peters, Cory Gwin GitHub Keynote | JupyterCon 2023

Unix Domain Socket: A Hidden Door Leading to Privilege Escalation in the Android Ecosystem

Mitigating Risk in Digital Asset Markets

DITA 2022 Panel

Oliver Tena & Pere Alcoberro - 1 platform and multiple clusters, teams & countries. The Allianz case

Security in Drupal: what can go wrong?