Date: September 12, 2022
Time: 9:00am - 12:00pm PT
Cyber attacks have never been more in the news. From Twitter hacks to identity theft, vulnerabilities are exposing gaps in the application development process. Application security is difficult, especially when security is a separate process from your DevOps workflow. Security has traditionally been the final hurdle to conquer in the development lifecycle.
Join this three hour hands-on workshop to gain a better understanding of how to successfully shift security left to find and fix security flaws during development - and to do so more easily and with greater visibility and control than typical approaches can provide.
In this session, we will provide hands-on examples with you in the driver’s seat and explore:
- How to achieve comprehensive security scanning - without adding a bunch of new tools and processes
- How to secure and protect your cloud native applications and IaC environments within existing DevOps workflows
- How to use a single-source-of-truth to improve collaboration between dev and sec
- How to manage all of your software vulnerabilities in one place
- How to automate and monitor your security policies and simplify auditing
- How to set up compliance pipelines to provide consistent guardrails for developers and ensure separation of duties
Agenda
- 9:00am: Intro and Technology Overview
- 9:10am: DevSecOps Roadmap and Q&A
- 9:55am: Uniting Dev and Sec Perspectives
- 10:15am: Dev Workflow
- 10:35am: AppSec Workflow
- 11:05am: Hands-on Integration Workshop - Q&A and Closing
To participate in the workshop, you will need a laptop with the latest version of Google Chrome and Zoom installed. GitLab workshops are intended to provide an introduction to GitLab topics with a hands-on approach. Workshops are not intended to replace training classes. Please be prepared to start promptly at the beginning of class to maximize your experience and minimize disruption of other attendees.