Jump to navigation Jump to content

Speaker

Aaron Lippold

Aaron Lippold

Chief Architect, Inventor MITRE SAF

Brambleton, Virginia, United States

Actions

Aaron Lippold is a Principal Cyber Security Engineer at The MITRE Corporation and the inventor and Chief Engineer of the MITRE Security Automation Framework (https://saf.mitre.org). Mr. Lippold is also one of the Capability Engagement Leads for DevOps and DevSecOps at MITRE.

As a leader in the Open Source community, Mr. Lippold has supported and shaped multiple security and automation projects including: InSpec, Ansible, Puppet, Chef, Jenkins, NIST OSCAL and SCAP, Docker, Bastille Linux. Mr. Lippold was one of the team-leads and contributors for the development of the NIST SP-800-190 Application Container Security Guide and continues to support the NIST OSCAL project as a consultant and peer-review. He has helped define the concepts of DevOps and CI/CD patterns and contributed to the Agile and Extreme Programming communities.

Mr. Lippold has supported the shape, direction and technology of DevSecOps initiatives for a growing corporative of government agencies, including the US Military, Intelligence Community and Federal Government.

Links

Area of Expertise

  • Information & Communications Technology
  • Government, Social Sector & Education

Topics

  • DevOps
  • DevSecOps
  • DevSecOps and GitOps in practice
  • Continuous compliance (DevSecOps perspective)
  • Agile software development
  • DevOps & Automation
  • devsec

Sessions

A Whole New World: Building Security into Containerized Apps

As organizations race to cloud-native, while many organizations have the technical know-how to build and deploy containers including Kubernetes, managing the entire container environment such as compliance and security requirements is challenging. While several tools are available to help, Progress Chef provides an essential element through InSpec's ability to extend security and compliance efforts to cloud-native resources including Kubernetes and public cloud services.

Join Emily Rodiguez, Software Engineer from MITRE SAF (Security Automation Framework) how Chef InSpec and other tooling can help address the challenges and solutions of an increasingly containerized world via automation. We'll provide security guidance for containers using Vulcan and community examples using Sophos Factory to publish MITRE SAF containers, address container scanning considerations (for both interactive and non-interactive runtimes) using container-aware InSpec scanning and discuss the future needs for container security.

Unifying the DevSecOps Journey: The MITRE SAF as a Force Multiplier

The MITRE Security Automation Framework (SAF) reaches across the government, intelligence community and industry to maximize the impact of automating security solutions.

The Tooling of DevSecOps - MITRE SAF in Action

See the MITRE Security Automation Framework (SAF) in action and leverage SAF to ease the entire security validation lifecycle, from forming requirements to visualizing results and every step in between.

Get in the Weeds of DevSecOps - MITRE SAF Tooling Deep Dive

Gain hands-on experience in this technical deep dive on the MITRE Security Automation Framework (SAF) CLI, libraries, tools and utilities, and learn how to build teams and techniques to achieve security automation.

Aaron Lippold

Chief Architect, Inventor MITRE SAF

Brambleton, Virginia, United States

Links

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top