A phased approach to building security automation into your CI/CD

OWASP Houston April Chapter Meeting

Wed, April 25, 2018 6:30 PM – 8:30 PM

We're once again partnering with the Houston Java Users Group (HJUG) on a topic of interest to both developers and security professionals. The meeting will be held at PROS and there is plenty of room for everyone there.

Please use this eventbrite link to sign up
https://www.eventbrite.com/e/a-phased-approach-to-building-security-automation-into-your-cicd-tickets-44982159851?aff=owasp

Meeting Location:

PROS
3100 Main
2nd floor, Room B
Houston, TX 77002

Presentation Title: A phased approach to building security automation into your CI/CD

Abstract:
So your engineering team is using CI / CD and churning out code at a frenetic pace. It is unclear where the risk is, what controls to focus on and where in the SDLC to introduce those controls. Mahesh will introduce a practical, risk-based approach to introducing security automation into the CI / CD pipeline to surface critical issues, shorten remediation time without bottlenecking the release. Finally, he will touch on the concepts of interactive analysis (IAST) and runtime protection (RASP) as key tools in this approach.

Speaker: Mahesh Babu, Head of Product Strategy, Contrast Security

Speaker Bio:

Mahesh is responsible for growing Contrast Protect. He takes every opportunity to tell everyone how Contrast has fundamentally changed application security for the first time since he started working in security 10+ years ago. Mahesh has seen the industry evolve as a researcher, consultant, and practitioner within a large bank. He began his career as a security researcher at the CERIAS center at Purdue University. He then went on to build and scale large security & privacy programs a Senior Manager & architect for HSBC Information Security & Risk. He also spent time as a consultant at Deloitte and Booz & Company. Mahesh has a BS in Computer Science and MS in Information Security from Purdue University and an MBA from Duke University.

About our venue sponsor:

PROS Holdings, Inc. (NYSE: PRO) helps companies around the globe realize their revenue profit potential. PROS is the only company with a solution portfolio that improves top- and bottom-line financial results simultaneously. As the largest publicly traded software company in Houston, PROS is proud of our world-class R&D team that’s more than 300 team members strong. Our company culture values ownership, innovation and a relentless commitment to “We Care.” Ask anyone about the best part of working at PROS, and the answer will be “our people.” PROS employees are the most caring, committed, knowledgeable and talented technology professionals around. We wouldn’t have it any other way.

Java is the backbone of all our products. We’re continually looking for ways to remain on the cutting edge of technology, and we’re proud to be supporters and sponsors of Houston’s growing developer community. To find out more about what PROS is all about, please visit www.pros.com.