Eric Johnson, Principal Security Engineer, weighs in on where to start adding security into DevSecOps in the CSO article by Scot Finnie.
Don’t be fooled, integrating security into the DevOps process is a big project. But the payoff is worth the effort. Here’s what you need to know to get started building DevSecOps from the ground up.
Registration is required on CSO to to view this full article, but there are plenty of takeaways on getting started with DevSecOps
Eric Johnson, Principal Security Engineer, weighs in on where to start adding security into DevSecOps
“The biggest cultural challenge to DevSecOps” said Eric Johnson, application and security curriculum manager at SANS Institute, is letting go the “culture of no” in favor of “working together to solve problems, empower teams, fail fast and continuously improve.”
With the Capital One breach announced in July 2019, weaknesses in the Amazon Web Services’...