RSA Presentation: Integrating our DevSecOps Product Pipeline with Software Security Standards

March 24, 2020 Security Compass

Every year, speakers bring their unique insights and perspectives to the RSA Conference. In February 2020, Security Compass’s Altaz Valani, Security Compass’ Research Director presented:  Integrating Our DevSecOps Product Pipeline with Software Security Standards
 

This session covered the dynamic nature of both security standards and DevOps technologies in our product development pipeline. It provided insight on how to leverage automation of DevOps tools for rapid reaction to standards changes, work with standards groups to introduce risk concepts and tie your innovation pipeline through early stage telemetry, and tightly coupling standards maps with product releases.

 

Altaz Valani, Director of Research at Security Compass, manages the overall research vision and team. He is a regular conference speaker who conducts ongoing research in the software security domain. Prior to joining Security Compass, he was a Senior Research Director and Executive Advisor at Info-Tech Research Group, Senior Manager at KPMG, as well as various positions working alongside senior stakeholders to drive business value through software development. Valani is on the SAFECode Technical Leadership Council, CIO Strategy Council, the Open Group, and also sits on several IEEE working groups where cybersecurity and privacy challenges are being tabled at the international standards level.

 

Previous Video
Addressing Business Risk in DevSecOps
Addressing Business Risk in DevSecOps

Many times DevSecOps is thought of as an enabler for speed. But what if speed introduces unnecessary busine...

Next Article
RSA Presentation: At What Point Does DevSecOps Become Too Risky for the Business?
RSA Presentation: At What Point Does DevSecOps Become Too Risky for the Business?

This session covered the implementation of an automated, continuous risk pipeline that demonstrates how cyb...