Busting The Shift-Left Myth: Why You Must Also Shift Right to Protect Your Expanding Attack Surface

On-Demand Webcast|1 Hour

The notion of "shifting left" refers to organizations conducting security testing earlier in a standard linear development process. But there's a catch: Modern DevSecOps is very much not linear -- as there should be robust testing in both staging and production environments.

Indeed, to execute DevSecOps properly, security teams need visibility into their constantly changing production environments -- especially when attackers are constantly looking to target unknown, forgotten and neglected assets within these information-rich and microservices-based environments. This is where external attack surface monitoring comes in. This practice helps you keep track of your assets so you don’t leave behind a trove of vulnerabilities for attackers to misuse. It also allows for rapid detection and response to exploitable bugs that often require prompt mitigation.

This webcast will make a case for external attack surface monitoring, covering such issues as:

  • The challenges of gaining visibility into production environments and complex tech stacks.
  • Reasons why companies may want to transition to DevSecOps for a more decentralized approach to security.
  • The advantages of a shift-left-and-right approach that tests apps through the full development process.
  • Strategies and solutions for ensuring an updated inventory of all Internet-facing assets and multiple daily releases to improve response times.



Rickard Carlsson

CEO and Co-Founder


Tech nerd that went from Applied physics/math to management consultant at McKinsey to co-founding Detectify, Rickard lives on the border between tech and commercial dialogues. As one of the co-founders, Rickard has grown Detectify from a group of ethical hackers with an idea on how to make the internet safer, to an international industry challenger that's 130+ people strong. Rickard has a background in tech and management consulting and has lived and worked in Sweden, India, and the US.


Bradley Barth

Director of Community Content

CyberRisk Alliance

As director of community content at CyberRisk Alliance, Bradley Barth develops content for SC Media online conferences and events, as well as video/multimedia projects. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Sponsored By: