What we’re about
The Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.
Upcoming events (1)See all
- DevSecOps Toolchain Transformation on Microsoft Azure and Amazon AWSBarceló Anfa Casablanca, Casablanca
## DevSecOps Toolchain Transformation Hands-on
The DevSecOps Mindset and Salient Features
- Shared Objectives
- Prioritizing Security
- Operational Insights and Threat Intelligence
- Holistic Security
- Proactive Threat Monitoring
- Improved Collaboration
- Developers as Security Proponents
- Continuous Monitoring and Auditing
- Defined Incident Response
Here are some actions you can take to upgrade your DevOps toolchain into a DevSecOps toolchain:
- Learn From Others in the DevOps and DevSecOps Communities
Look to the DevOps community to help close your critical knowledge gaps.
- 2. Start With Your Container Security
The first step to building out the security of your DevOps toolchain starts with your container security.
- Institute Continuous Compliance
DevSecOps is a platform for continuous compliance to protect your software supply chains against vulnerable packages and vulnerable configurations.
- Double Down on Automation
While you may have already been experimenting with automation during your DevOps phase, it only becomes more integral once you throw the switch in by going DevSecOps. Go into your DevOps to DevSecOps transformation with an automation strategy that focuses on automating common developer and sysadmin tasks.
- Improve Your Monitoring and Analytics
Building out a DevSecOps toolchain takes your monitoring and analytics options to a new level. Consider the fact that you should already collect and publish data from your toolchain and deliver reports to your project managers, developers, QA testers, and stakeholders outside your team. Commonly, DevOps reporting is still a work in progress for organizations. Use the introduction of new security tools into your toolchain as a chance to offer more granular and real-time security reporting into all parts of your DevSecOps toolchain.
- Implement Accessibility Assurance
Depending on your organization’s definition of compliance, the option is there to add accessibility compliance or Section 508 to your DevSecOps toolchain.
This hands-on training is reserver for 70% professional and 30% students.
General Conditions in order to validate your participation to this event:
1. Student must send University/Student ID, otherwise registration will be rejected.
2.Professional must register company emails, otherwise registration will be rejected.
Registration only via EventBrite. We don't accept answer via meetup.
Please indicate your firstname, lastname, company name, a valid business email or school email (email like gmai, free, hotmail, outlook, etc are not accepted and registration will be cancelled).
Please register here: