In the past few years, security integration within the DevOps pipeline has given rise to the idea of DevSecOps. Once seen as the bottleneck and inhibitor of the development and deployment process, security has become an integral part of the movement towards automation and the removal of manual oversight enforcement. As stated in the DevSecOps Manifesto, “We must adapt our ways to ensure data security and privacy issues are not left behind because we were too slow to change.”
There are practitioners in the field who are pushing forward with the idea of creating a secure application development pipeline, with security integrated from conception through deployment. In this year’s DevOps Connect: DevSecOps Day at RSA Conference 2019, you’ll hear stories from those practitioners, explaining how they made the cultural transformation from legacy development and deployment processes to integrated systems that include security as a part of the process, not as an overseer or bottleneck to secure application development.
This series of first person talks will give you a perspective on how you and your team can enable faster application development with more rapid deployment to production, while integrating security into your DevOps initiatives.
We have a strict “No vendor pitches” policy. We are looking for practitioners who can tell their story and help others see the path ahead. If you are a vendor, consultant or company who sells services or products, encourage your clients to tell their story.
We are looking for practitioners to discuss the unique challenges of adopting security into the DevSecOps pipeline, the obstacles to security being a contributing and valued partner in DevOps and the ways to overcome them. Specific topics we are looking for include, but are not restricted to:
Each submission should end by communicating the core value in your message: how did you get security integrated into your DevOps initiative and what value did it provide to your project.