How to transform “DevSecOps" into “SecDevOps” by shifting-left “Code Security”

As part of the shifting-Left “Code Security” paradigm, Software developers, Members of Agile DevOps teams are faced with the daunting task to quickly scan, test, and analyse their code for potential security vulnerabilities and identifying and correcting defects, in order to prevent propagation through the Software Development cycle or even worse, ending up in the release to the market.

The remedy is to enable Software developers, Members of Agile DevOps teams to perform Static analysis, Runtime analysis, Automated Unit Testing, adhering to key industry standards such as SEI CERT, CWE/SAN, DISA STIG, FDA, MISRA, OWASP, PCI DSS, as well as performing Automated Component, Integration and API-level testing, at an earliest stage possible.  

In this session, Parasoft and Quence will present and outline the remedial proposition for Software development teams, who want to implement the “SecDevOps - Security Development Operations lifecycle”.

Track 1 - 15:55
Giorgio Riva - Technical Director, Quence e Albert Beijlevelt - Parasoft Europe
NH Milano Congress Center - Sala Scala 1+2