Practical DevSecOps Using Security Instrumentation

September 5, 2020

Share this Video
Facebook
Twitter
Email
LinkedIn

The traditional “outside in” scanning and firewalling approach to application security has failed. After decades of attempts to improve software security, vulnerability rates are still staggering while attacks are increasing in volume and severity. We need a new approach to security that doesn’t slow development or hamper innovation. In this talk, we’ll show how you can ensure software security from the “inside out” by leveraging the power of software instrumentation. Unlike scanning and firewalling, this approach establishes a safe and powerful way for development, security, and operations teams to collaborate. In this talk, we’ll show how software security instrumentation works, how it’s being used in many organizations, and what the future holds for DevSecOps. Jeff Williams, CTO & Co-Founder at Contrast Security Slides: https://www.slideshare.net/Pivotal/practical-devsecops-using-security-instrumentation

Permission to Fail

"We all make mistakes; it’s part of what makes us human. At the same time, we worry about the impact. Will ...

Next Video

Observability, Distributed Tracing, and Open Source: The Missing Primer

"With the industry-wide shift from monoliths to microservice architectures, runtime interdependencies moved...

Most Recent

3:23

SpringOne 2020 Highlights

Practical DevSecOps Using Security Instrumentation

Previous

Next Video

Most Recent

More than 40,000 of our closest friends from the Spring community registered for our first ever virtual SpringOne event. Over a hundred speakers from global brands covered Spring for beginners, advanc

Development teams—who would love to spend a couple sprints paying down technical debt—often seem to be at odds with business stakeholders who want new features, like, yesterday. Convincing “the busine

Software engineering may be difficult, but fostering a working environment that enables skilled engineers to perform their best can sometimes seem downright impossible. Every day, many engineering tea

This panel presentation will be led by the founders and key participants of the Agile Leadership Meetup. This group consists of the leaders who have undertaken the challenge of standing up their compa

Tesco Bank has embarked on a digital transformation journey, and at the heart of it lies a shift of culture and the adoption of modern product development practices. What could go wrong? Everything!

Daimler supports its developers with a centrally curated DevOps toolchain, including a cloud native platform based on Cloud Foundry. The idea is to free hundreds of dev teams from operations scaffoldi

In this session, I’ll present Teachers’ journey to VMware Tanzu Application Service, highlighting how we successfully navigated obstacles to achieve a flexible, modern platform for our developers. I’m

When chaos reigns, systems are down, and survival hinges on extraordinary efforts, we turn to heroes. The dilemma is that hero culture is self-perpetuating and toxic. Organizations can improve outcome

Enterprises are eager to see a return on the investment they have made once they’ve written a large check for purchasing VMware Tanzu Application Service (TAS) and consulting services. What data do y

AMA on How to Build a Spring Boot Application

If the current pandemic landscape has disrupted your business cases, and leadership is challenged with finding investment for your projects, this session will guide you through a proven, market-leadin

The past few months have been challenging and stressful for people all over the world with the COVID-19 global pandemic crisis. With Americans stocking up to stay at home, several grocery chains have

Managing large-scale distributed systems at scale comes with a lot of challenges around security, compliance, logging, monitoring and capacity management. As your footprint expands and your customer b

When you’re faced with having to build a critical loan application for a number of financial institutions within a number of days during a pandemic, you need capabilities that enable your developers.

Most organizations with legacy applications are undertaking business transformation journeys to modernize their workloads, become more agile, and reduce costs. However, the reality is that a majority

It can be a daunting task to begin building a culture of accessibility. But considering that one in four U.S. adults has a disability that impacts major life activities, organizations must prioritize

What makes women want to choose a technologist role as their career choice? We’ll talk to three IT leaders and active VMware Tanzu Vanguards as they share their experiences, challenges, accomplishment

Running a modern platform can be messy. We face ever-increasing stakes, uncertainty, and complexity. It only gets harder when platform teams work in isolation from their stakeholders (not always by ch

BT is transforming its ways of working across its Consumer Digital Commerce platform, moving away from a monolith to a microservice architecture. This is allowing BT to be more efficient and responsiv

AMA on Spring Cloud Data Flow