Say goodbye to the traditional waterfall-based, security-as-stage-gates approach. The business is moving faster than ever before in the DevOps world. How can security keep up and become fully integrated? The Ahold Delhaize information security team is on a journey to adapt to the speed of DevOps while providing business-centric, pragmatic security advice. Our goal is to ensure that security is still adequately covered without hindering the momentum of an innovative and agile business. This talk will cover best practices for people in different roles within the organization, processes for the security and development teams, and security tools. We will also share the lessons that we have learned so far and next steps going forward, including potential research areas in automation, machine learning, and data science.

Details

time: 14:50
speakers: Benessa Defend

Other sessions:

You Should Get Some (Cyber) Exercise!


Cyber Supervision in the Netherlands


The Italian Cyber Security Landscape: Building a Resilient Nation


Deviant Security: the Technical Computer Security Practices of Cyber Criminals


Digital Service Providers and the NIS-Directive


Flashback with ATT&CK