From DevOps to DevSecOps

Track: Security
Abstract

This talk is a simple step-by-step framework for a full Dev(Sec)Ops cultural transformation borrowing ideas from Lean/Agile/Digital Transformation. It explains how to build trust. It addresses the mindset shift concerns for all relevant audiences. It covers first steps and how to track progress. It’s adaptable to any environment regardless of industry, technology, or maturity. Most importantly it’s been proven in a highly diverse environment of 600 development teams at Comcast.

Larry Maccherone

Larry is the author of a dozen or so open source projects one of which gets 1M downloads a month but his day job is Agile and Dev(Sec)Ops transformation. At Comcast, he launched and scaled the DevSecOps Transformation program over five years, and is now at Contrast helping organizations empower development teams to take ownership of security.