Changed responsibilities in modern software development environments


Details
Topic :
Changed responsibilities in modern software development environments
Short:
Agile, CI/CD and Dev[Sec]Ops are mentioned more often than not interchangeable but they are not. With the current security initiated shift-left paradigm, what is changed in and around software development with the regards of [application] security responsibilities?
Long:
With the business increased the pressure and demand for flexibility of the development team, the agile movement was pushed to the limits. CI/CD was born to reduce manual steps to reduce human errors and increase speed to go-live! Last not least, with DevOps the teams took application responsibilities, from cradle to grave. Nevertheless, software security is still missing in many full-stack developers' resumes and application security responsibilities are pushed off to the security department still. Petty, because the exactly agile, CI/CD and DevOps are security enabling practices.
This session is explaining Shift-left, early security enablement in the development Lifecycle. As the application development becomes more developer centric, the developer’s toolset must match the new challenges to have responsibilities matching capabilities. Learn from rugged software to supply chain cleanliness. Learn to avoid the common pitfalls and benefits of modern application development strategies. Hear why security champions programmes tend to fail, compliance driven security training is a waste of time and money. Security teams struggle and fail to integrate security tooling in release pipelines.
Take back the best practices, proven solutions and Shift Left beyond the development.
Speaker :
Martin Knobloch, Global AppSec Strategist at Micro Focus, is a long-time information security leader with more than 15 years of experience in the field. With a background in software development and architecture, his focus is on software security. Martin is actively involved in OWASP where he is a frequent contributor to various projects and initiatives, as well as a member of the Board of Directors. During his career, Martin has been a recognized teacher, guest lecturer at various universities and invited speaker and trainer at local and international software development, testing and security conferences throughout the world.
join with us :
Join Zoom Meeting
https://zoom.us/j/93546044100?pwd=V2p3M1Vld2tqZStyRTRBVGJpNGl1QT09
Meeting ID: 935 4604 4100
Passcode: owaspjkt21


Changed responsibilities in modern software development environments