Security at the Speed of Cloud: Maintaining Control of Security in the Age of DevOps & Cloud (CEs)
Information Technology seems to be hooked on speed. Since the writing of the Agile Manifesto in 2001, enterprises have steadily moved towards increasing the velocity of creating and deploying systems to production and to the hands of the end customers. And this movement seems to be in full bloom. More and more companies are skilling up their IT departments to apply DevOps and CI/CD (Continuous Integration/Continuous Delivery), and most companies have already migrated into or are seriously considering adding the cloud to the mix.
This trend has significant consequences for controlling IT security. First, with DevOps, security must not be a drag on the CI/CD process. It must not slow it down but keep up with the speed of new releases and deployments, which could be multiple times a day. Second, with the cloud, security controls must live with virtualization and several layers of abstraction. Virtualization and abstraction hide complexity. And it is this complexity that is often the cause of vulnerability and security.
This session will highlight the challenges of implementing IT security controls in the CI/CD and cloud context. The speaker will also demonstrate the current best practice to tackle these two aspects of modern systems. The demonstration will include:
Automating security in the CI/CD pipeline
Performing packet capturing in the SDN (Software Defined Network)
(Audio Only)
[ad_2]
source