Session

Secure DevOps: How to enable a culture of security in your DevOps team?

“Assume breach - The question is not if there will be an attack but how to discover it as soon as it takes place!”

DevSecOps, SecDevOps, SecDevSecOpsSec - there are several terms that are excessively and permutably used to describe security in DevOps. Security has historically been important for operations and therefore still has high impact into how to run modern applications. But in a modern DevOps organization, you don’t have a separated operations team any more. This is why security nowadays needs to be established through the whole application lifecycle: starting with secure environments, secure code, testing, monitoring and application operation.
In this session, Microsoft MVPs Mike Kaufmann (Dev) and Tom Janetscheck (Ops) will give you insights into how to bring security to DevOps by means of real-life demos and notes from the field. You'll learn why governance, infrastructure-as-code and security belong together, what Microsoft Azure can offer to enhance your security posture in the cloud, and how to enable a culture of security by red team/blue team exercises and chaos engineering practices in your DevOps team.
Only with culture of security and the awareness of all participants in your entire application lifecycle you can secure your resources, your data and with it your business.

Tom Janetscheck

Senior Product Manager, Microsoft Defender for Cloud

Saarbrücken, Germany

View Speaker Profile