How to transform “DevSecOps" into “SecDevOps” by shifting-left “Code Security”

Giorgio Riva and Albert Beijlevelt

As part of the shifting-Left “Code Security” paradigm, Software developers, Members of Agile DevOps teams are faced with the daunting task to quickly scan, test, and analyse their code for potential security vulnerabilities and identifying and correcting defects, in order to prevent propagation through the Software Development cycle or even worse, ending up in the release to the market.

The remedy is to enable Software developers, Members of Agile DevOps teams to perform Static analysis, Runtime analysis, Automated Unit Testing, adhering to key industry standards such as SEI CERT, CWE/SAN, DISA STIG, FDA, MISRA, OWASP, PCI DSS, as well as performing Automated Component, Integration and API-level testing, at an earliest stage possible.  

In this session, Parasoft and Quence will present and outline the remedial proposition for Software development teams, who want to implement the “SecDevOps - Security Development Operations lifecycle”.

More in this category: « Agile Testing from the trenches Test Automation and beyond powered by Artificial Intelligence »
Hours:
Track 1 - 15:55
Speaker:
Giorgio Riva - Technical Director, Quence and Albert Beijlevelt - Parasoft Europe
Venue:
NH Milano Congress Center - Sala Scala 1+2
Language:
English
Notebook:
No