Beyond the buzzword: building a practical DevSecOps culture in your organization

Get your cards out, let's play buzzword bingo!

This session aims to explain DevSecOps, offering a clear, step-by-step guide to integrating security seamlessly into the DevOps lifecycle within your organization. We'll explore effective strategies, tools and cultural shifts that are needed to create a robust DevSecOps environment, specifically tailored to teams working with Drupal and related web technologies.
This session will mainly focus on the technical and practical steps for evolving DevOps into DevSecOps, but will also cover compliance with directives and standards like NIS2 and ISO 27001.

Topics that will be covered are integrating security in CI/CD pipelines, pragmatic handling of the pipeline reports, proactive security practices, how to cultivate a DevSecOps culture, ...
 

Livestream: