DevSecOps and Compliance
Details
DevSecOps and Compliance: From Shifting Left to Continuous Compliance
Join us for an engaging meetup featuring two insightful talks exploring the journey from shifting left to achieving continuous compliance with DevSecOps.
***
Talk 1: Fixing and Building While Shifting Left
Speaker: Karan Shah - Principal Security Consultant
With the fast paced development of web applications, let's talk about introducing the security around application's lifecycle and managing the burden of fixing vulnerabilities along with embracing the culture change. Let's also understand how security champions can further help in transforming the perspective of security from it being considered as a blocker to it becoming an enabler. In between fixing and building we will also discuss how to optimize the pipeline to reduce its overall execution time.
***
Talk 2: Seamless Security: Achieving Continuous Compliance with DevSecOps
Speaker: Soumen Mukherjee - Product Security Officer
Learn about the evolving world of cybersecurity compliance and how DevSecOps plays a crucial role. Key topics include:
- Why compliance matters and upcoming regulations like NIS2, DORA, EU AI Act, and U.S. federal mandates.
- The common themes in compliance regulations and their implications.
- Leveraging DevSecOps for continuous monitoring, managing vulnerabilities, and using SBOMs (Software Bill of Materials) to meet regulatory requirements.
- Tools, platforms, and a short demo to illustrate practical approaches to compliance, including Snyk’s solutions.
Don’t miss this opportunity to deepen your understanding of DevSecOps and gain actionable insights into managing security and compliance effectively.
