Shifting Security Left

(1) Starting Left with Cloud Security && (2) Putting the Dev in DevSecOps

**** Meeting link will be added closer to the date and accessible to those who RSVP only ****

Talk 1: Starting Left with Cloud Security
Speaker: Stefania Chaplin, EMEA Solutions Architect at Secure Code Warrior

Talk Summary:
Cloud spend is projected to make up 14.2% of the total global enterprise IT spending market in 2024. With great power comes great responsibility!
As the world moves to the cloud, the infrastructure we host our technologies on has become the newest low hanging fruit for hackers. Whether its misconfigured S3 buckets, IAM privileges or security groups left on 0.0.0.0/0 there are many potential pitfalls for the average cloud provisioner.
The days of a hands-off security approach for cloud are over, and with the right training and tools, companies can take advantage of this process, upskill their security awareness and stand out among their peers.
Delivered by Solutions Architect, Stefania Chaplin, she will demonstrate:

• The growth of Cloud, with great power comes great responsibility!
• Patterns, Trends & Tooling in Cloud Security
• (Cloud) Security is a shared responsibility
• How to start left with Cloud Security, empower your users to be #cloudsecfirst!
• Incorporating Cloud Security Training into the optimal security program

Speaker Bio:
Stefania Chaplin is EMEA's Solution Architect at Secure Code Warrior. Her experience within Cybersecurity, DevSecOps and OSS governance means she's helped countless organisations understand and implement security throughout their SDLC. As a python developer at heart, Stefania is always improving efficiency wherever she goes by scripting and automating processes and creating integrations. Stefania is passionate about DevSecOps and cybersecurity, having spoken at many conferences including; RSA, JavaZone in Norway, JFokus in Sweden and ESOC MENA, Women of Silicon Roundabout and Women in DevOps in London. Most recently, Stefania has been speaking at many virtual events such as ADDO, Mauritius Virtual Developers Conference, DZone, virtual meetups and on the Secure Code Warrior Brighttalk. She is also an active member of OWASP DevSlop and helps co-host their technical shows.

Talk 2: Putting the Dev in DevSecOps
Speaker: Andrew Byrne, Principal CyberSecurity Consultant, Dell Technologies.

Talk Summary:
Shift Security Left and DevSecOps are two of the prominent buzz terms of recent years in the cybersecurity industry. Both have featured heavily in Dell, but what does it really mean? What is the reality of following through on the latest security hype in a large multinational? This talk will break down the journey, and address the key questions and challenges that crop up along the way, not least of all, how do they get the dev in DecSecOps?

Speaker Bio:
Andrew is a Cybersecurity Advisor for Dell Technologies, with a background in cryptography, application development and data privacy. He is a UCC graduate with a PhD in Cryptography and previously worked on McAfee’s drive encryption products. In 2015, Andrew moved to EMC, working on EU funded projects in a diverse range of topics such as Post-Quantum Cryptography, privacy preserving data markets, big data platforms, and secure Cloud services. Most recently he moved to the DTST organization in Dell where he helps drive the adoption and maturity of security practices and controls, and foster a culture of security throughout its development teams.