DevOps, Firewall

DevOps and Securing Applications – PSW #632

December 27, 2019

- Given that DevOps is a process and its execution requires many different tools, how do we get started "doing DevOps"?
- What about DevOps allows us to produce more secure applications?
- What concepts inside of DevOps do most people lose site of?
- What are the major challenges involved in taking an application from traditional development to DevOps?
- What are some of the best approaches to making an application more resilient to threats
- To ORM or not to ORM?
- Which services do you implement yourself vs. using a cloud service?
- How do I choose the best secrets vault?
- What should I use an orchestrator for and what should I not use an orchestrator for?
- How do I build a secure API for my app?
- Thoughts on GraphQL vs. REST security implications?

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor's Page

DevOps and Securing Applications

Hosts

[caption id="attachment_210" align="alignleft" width="120"]April Wright April Wright - Preventative Security Specialist[/caption] [caption id="attachment_210" align="alignleft" width="120"]John Kinsella John Kinsella - Vice President of Container Security[/caption] [caption id="attachment_210" align="alignleft" width="120"]Matt Alderman Matt Alderman - CEO[/caption] [caption id="attachment_210" align="alignleft" width="120"]Mike Shema Mike Shema - Product Security Lead[/caption] [caption id="attachment_210" align="alignleft" width="120"]Paul Asadoorian Paul Asadoorian - Founder & CTO[/caption]

Guests

[caption id="attachment_210" align="alignleft" width="120"]Chris Eng Chris Eng - Chief Research Officer [/caption] [caption id="attachment_210" align="alignleft" width="120"]Eric Johnson Eric Johnson - Principal Security Engineer [/caption] [caption id="attachment_210" align="alignleft" width="120"]Frank Catucci Frank Catucci - Sr. Director GTP - Application Security [/caption] [caption id="attachment_210" align="alignleft" width="120"]James Ford James Ford - Head of Information Security [/caption] [caption id="attachment_210" align="alignleft" width="120"]Jason Kent Jason Kent - Hacker in Residence [/caption] [caption id="attachment_210" align="alignleft" width="120"]Josh Corman Josh Corman - I am The Cavalry [/caption] [caption id="attachment_210" align="alignleft" width="120"]Keith Hoodlet Keith Hoodlet - Senior Manager of Global DevSecOps [/caption] [caption id="attachment_210" align="alignleft" width="120"]Sandy Carielli Sandy Carielli - Principal Analyst [/caption]

[audio src="http://traffic.libsyn.com/sw-all/PSW_632_-_DevOps_and_Securing_Applications_correct-0_converted.mp3"]

prestitial ad