Wabi-Sabi Your DevSecOps
The ability of DevSecOps to produce secure code requires the merging of two very different cultures: AppSec and DevOps. While AppSec lives in a black-and-white world of secure or not secure that would cause “Hello World” to take six months to release, DevOps knows that the reality of software development is actually shades of gray, especially as demands are increasingly placed on development teams to produce more, faster. Brittany Greenfield will teach you how to apply the Japanese concept of wabi-sabi, which accepts imperfections in the things that we create, to DevSecOps, allowing you to assimilate AppSec into the development lifecycle without having to sacrifice speed for security. You will understand how to map application security processes into development pipelines by providing business context to security controls, and you'll learn that the two do not have to be mutually exclusive, but rather can coexist to reduce project uncertainty, risk, and time to market.