Speakers
Synopsis
The integration of application security processes into the software development and delivery pipeline (DevSecOps) has led to enormous benefits by being able to address security issues earlier in the software development lifecycle.
However, DevSecOps is increasingly encountering a development landscape that faces new paradigms such as GitHub Copilot’s AI, an emphasis on developer productivity (DevEx), and changing organisational disciplines such as Platform Engineering. These shifts will have a high impact on traditional DevSecOps activities across technical and organisational boundaries.
In this presentation we give a detailed overview of the new and upcoming challenges. We classify them by their impact on existing organisational, operational, and technical strategies for deliver secure software in a timely manner. Moreover, we propose a number of strategies to prepare for such a shifting landscape and some of the success criteria for adapting to the new world.
We share our experiences from working in the DevSecOps space for over a decade and will illustrate some Do’s and Don’ts for future-proofing DevSecOps in your company.
