Jernej Porenta works at 3fs as a staff infrastructure engineer helping customers transitioning IT workloads to the cloud and adopting dev(sec)ops ways of working.
The Journey to Secure Code Development
Predavanje je v angleškem jeziku.
In this presentation, we will walk through the path of raising the security of an existing code base and raising the security awareness of the actual developers. Starting from no security inside already existing projects toward stable development with a lot of security guardrails included with no to little impact on the development workflow. The presentation will focus on the automation (continuous integration/continuous deployment) which fueled the whole process, now known as "shift left security". We will see which approaches developers loved, which parts were controversial, where are we at the moment and what we can do in the future.