Rishi Kant
Senior Manager, Cyber risk & advisory
Actions
Self-motivated security enthusiast professional with 15+ years of information security experience that includes freelance or industrial in various areas. The vast experience included multiple cultures, and different geo-locations with different industries such as security auditing, application security, risk management, threat and vulnerability management and business continuity & disaster recovery, digital Forensics, IT administration, secure software development, training, and company operations. I worked in various industry verticals such as utilities, IT/ITES, E-commerce, government, BFSI, and law enforcement agencies.
Links
Security Pillars in DevSecOps
This presentation is to cover all phases of DevSecOps like Secure architecture, Threat modeling, Source code review at IDE, SAST or IAST at the repository, DAST for agile stories, and DAST at UAT before release. It will cover most of the security pillars and gates for checking any type of Application(thick-based, thin-based, mobile, API). Will discuss how DevSecOps can be implemented in Azure cloud and also with IAST tools like sonar cloud. I also include how we can make complete DevSecOps and Application function more secure without any human validation interaction with a security pillar in place for a better CICD pipeline just like automation in DevSecOps.
I also cover, How we can identify the issues from IDE, SCA, SAST, IAST, and DAST and assign them to the developer automatically with Active directory in Azure DevOps if found issues are above the acceptable criteria. Automatic fail/pass of Pipeline based on security criteria which improve the Pipeline release faster, optimized, and secure.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top