Irene Comalada – DevSecOps, stay away from being in the news

Testing Security Automation

Learn how to prioritize security in your development cycles, automate testing, and prevent attacks with DevSecOps, a journey that requires people, process, and technology to stay ahead of threats and avoid being in the news.

Key takeaways
  • Security is for everyone, not just security teams.
  • DevSecOps is essential to prevent attacks and ensure continuity.
  • Code reduction is a vital step in reducing vulnerabilities.
  • Automate security testing to ensure code quality.
  • Focus on people, process, and technology to improve security.
  • Plan for risk assessment and continuous improvement.
  • Make security a priority in development cycles.
  • Ensure transparency and openness in security processes.
  • Use the right tools and technologies to improve security.
  • Make continuous testing and improvement a part of the culture.
  • Stay away from being in the news due to security breaches.
  • DevSecOps is not a destination, but a journey.
  • Focus on three factors: People, Process, and Technology.
  • Continuous improvement and training are essential.
  • Prevention is better than cure, so prioritize security.
  • Security is not just about technology, but also about people and process.
  • Continuous testing and evaluation are crucial.
  • Authentication and authorization are critical.
  • Contextualize security for each organization and industry.
  • Security is a shared responsibility, not just for security teams.
  • Awareness and understanding are key to improving security.
  • Security must be integrated into the development process.
  • Automate security testing and vulnerability management.
  • Plan for recovery and continuity in case of attacks.
  • Use the right tools and technologies for security.
  • Prioritize security in the development cycle.
  • Focus on people, process, and technology to improve security.
  • Continuous testing and improvement are essential.
  • Stay vigilant and proactive in security efforts.
  • Security is a journey, not a destination.
  • Plan for risk assessment and continuous improvement.
  • Prioritize security in the development cycle.
  • Continuous testing and improvement are essential.
  • Stay away from being in the news due to security breaches.

More talks

Building games in .NET MAUI - Shaun Lawrence - NDC London 2023

World-class Engineering for an Octopus • Michael Noonan • YOW! CTO 2019

SAINTCON 2023 - Ed Miro - How to Social Engineer the Ultimate Adversary

Evasive Maneuvers: Trends in Phishing Evasion & Anti-Evasion

Vue's Road to Vite, Haoqun Jiang, ViteConf 2022

Demystifying Web API Security in Azure - Jimmy Bogard - NDC Sydney 2024

Best Practices for Making a Wagtail Site as Accessible as Possible with Scott Cranfill

Mark Smith - Everything You Know About MongoDB is Wrong!