Tag: DevOps

You Do Not Need to do DAST in a Pipeline to do DevSecOps

Posted on by Leave a comment
Image of a monkey that it surprised to learn you do not need a DAST in your CI/CD to be doing DevSecOps. We were all surprised!

I want to get something straight: you do not need to put a dynamic scanning tool into your CI/CD pipeline in order to do DevSecOps properly. You don't even necessarily need to use automated dynamic analysis at all, to be doing DevSecOps. I do regular consulting via IANs Research and quite often I find myself…

Continue reading You Do Not Need to do DAST in a Pipeline to do DevSecOps

Sharing Another Talk with the Community

Posted on by Leave a comment
Me, delivering this talk for the first time, on stage.

Three years ago I decided that I would share most of my talk content with my community (everything that I am not currently applying to conferences with). At the time, I only shared one, because.... I ran out of time. Now it's time to share the second talk, "Security is Everybody's Job!" By “share” I…

Continue reading Sharing Another Talk with the Community