Say goodbye to the traditional waterfall-based, security-as-stage-gates approach. The business is moving faster than ever before in the DevOps world. How can security keep up and become fully integrated? The Ahold Delhaize information security team is on a journey to adapt to the speed of DevOps while providing business-centric, pragmatic security advice. Our goal is to ensure that security is still adequately covered without hindering the momentum of an innovative and agile business. This talk will cover best practices for people in different roles within the organization, processes for the security and development teams, and security tools. We will also share the lessons that we have learned so far and next steps going forward, including potential research areas in automation, machine learning, and data science.

Details

time: 14:50
speakers: Benessa Defend

Other sessions:

Flashback with ATT&CK

Monitoring and Cleaning Up Infected IoT Devices in the Netherlands

Fighting DDoS Attacks Together on a National Scale

Cryptography in Practice

Deviant Security: the Technical Computer Security Practices of Cyber Criminals