Loading…
Join us on the slack channel for live discussion with the speakers and your peers.
All times shown are EASTERN DAYLIGHT TIME (GMT-4).

TO VIEW A SESSION, MOUSE OVER THE TITLE AND SELECT "CLICK TO VIEW THIS SESSION"
View analytic
Thursday, June 7 • 5:15pm - 5:45pm
We Are All Equifax

Sign up or log in to save this to your schedule and see who's attending!

Click to watch this session

In March 2017, hackers took three days to identify and exploit a new vulnerability in Equifax’s web applications. In the post-Equifax world, moving new business requirements (e.g., a non-vulnerable version of Struts2) into production in under three days might just be your new normal. Join this session to better understand how DevSecOps teams are applying lessons from W. Edwards Deming (circa 1982), Malcolm Goldrath (circa 1984) and Gene Kim (circa 2013) to improve their ability to respond to new business requirements and cyber risks.

Learning Outcomes:
  1. What our analysis of 17,000 applications reveals about the quality and security of software built with open source components
  2. How organisations like PayPal, Intuit, Fannie Mae and the Department of Defense are utilising the DevOps principles of software supply chain automation
  3. Why avoiding open source components and containers over 3 years old might be a really good idea
  4. How to balance the need for speed with quality and security early in the development lifecycle
  5. Leverage these insights to understand how your organisation's application of DevOpsSec practices compare to others

Speakers
avatar for Derek Weeks, Sonatype

Derek Weeks, Sonatype

VP and DevSecOps Advocate
After flying to 40 countries and racing through a half-Ironman competition, Derek woke up one morning on the top of Kilimanjaro and saw the world in a new light. Soon after, Derek become a huge advocate of applying proven supply chain management principles into DevSecOps practices... Read More →


Thursday June 7, 2018 5:15pm - 5:45pm
Live, Online

Attendees (29)