Anders Wallgren is chief technology officer at Electric Cloud. Anders has over 25 years¹ experience designing and building commercial software. Prior to joining Electric Cloud, he held executive positions at Aceva, Archistra, and Impresse and management positions at Macromedia (MACR), Common Ground Software, and Verity (VRTY), where he played critical technical leadership roles in delivering awardwinning technologies such as Macromedia¹s Director 7. Anders holds a B.SC from MIT.
You Build It, You Secure It: Higher Velocity and Better Security with DevSecOps
One of the challenges businesses face today is the mandate to be agile and release software faster while at the same time ensuring they¹re not the next headline news for a major security breach. One of the biggest stories in recent cyber history was the Facebook hack. In September of 2018, Facebook saw its biggest security breach in its history and over 50 million individual¹s private data were compromised. You and I could have been hacked, and we didn¹t have a choice.
If the goal of DevOps is Continuous Delivery, then the goal of DevSecOps is eliminating the possibility of pushing vulnerable or insecure software releases to production. It¹s 30 times cheaper to fix a security defect in development vs. production, yet security is often treated as an afterthought and a bottleneck. It doesn¹t have to be that way. DevSecOps practices build security and quality into the software delivery process by making EVERYONE responsible for security at every stage of the delivery pipeline.
In this session, we share tips that allow developers and operators to increase delivery velocity and harden their pipelines by including security earlier in the delivery process.