Video details

LISA21 - AppSec Fundamentals for Modern DevOps


AppSec Fundamentals for Modern DevOps
Suchakra Sharma and Vickie Li, ShiftLeft Inc.
The complexity of modern applications and their deployments means that DevOps needs to wear the security hat from time to time. AppSec knowledge can help DevOps engineers plan their deployments, contingency plans and communicate more effectively with the Security and Development team.
In this talk, we will introduce the principles of application security. We will first talk about the industry-standard OWASP Top 10 vulnerabilities. We will then discuss the secure development lifecycle and how to implement security measures in each step. Finally, we will talk about how security teams can build an AppSec program in their organization to continuously improve their security posture.
View the full LISA21 program at