Session Name: DevSecOps Culture: Laughing Through the Failures
Rolling out DevOps + Security has its series of pitfalls. In this talk, we'll explore real-world challenges, sprinkling in a bit of humor on behalf of the Internet, and work out the solutions to how to avoid these pain points using security culture. You'll experience what can go wrong, to expose how to do things right. A sampling of the failures we'll cover are name and brand, the infinity graph, security as a special team, vendor-defined DevOps, and a lack of collaboration.
Chris Romeo is CEO and co-founder of Security Journey where he creates security culture influencing training, consults, and speaks. His passion is to bring security culture change to all organizations large and small through the creation and design of gamified security training. He was the Chief Security Advocate at Cisco for five years, where he empowered engineers to "build security in" to all products at Cisco and led the creation of Cisco's security belt program. Chris has twenty years of experience in security, holding positions across the gamut, including application security, penetration testing, and incident response. Chris holds the CISSP and CSSLP certifications.