As companies push code faster and more often than ever, the vulnerability rate of our systems is accelerating. DevOps has demonstrated its value in companies that have adopted it. Security is a cornerstone that must be built into strategy.
In today's DevOps approach, security is a shared responsibility, built into application lifecycles from start to finish. This component is so essential that it gave birth to the term “DevSecOps”.
A. Origins of DevOps - Its culture
B. Organization and acquisition of maturity
A. What is it about ? Security in DevOps
B. Culture of shared responsibility
C. Westrum's organizational culture
D. The request for advice according to Laloux
A. ISO 27001 ISMS - Information Security Management
B. ISO 31000 - Risk Management
C. Assessment of the impact on privacy( PIA )
D. OWASP SAMM
A. Process model / Threat modele
C. SoD - Segregation of duties
D. Myths of SoD vs DevOps
E. 10 OWASP
F. Recommendations on cryptographic algorithms
G. OWASP ASVS
H. Mobile security threat
Serious game : Cornucopia
OWASP Cornucopia is a card game that helps identify and set security standards for an application throughout the development cycle.
Thanks to this fun Serious Game, you will be able to challenge the security flow of your application by empowering your team.