Introducing Signal Sciences Terraform Provider DevOps has always been part of Signal Sciences’ DNA: the…
Another Signal Sciences’ Lunch and Learn Series is happening this month! It’s a webinar series geared for practitioners. Every month we are featuring fast-paced 30 minute webinars to help you learn from leaders in our industry. For our second episode in the series, we are pleased to bring you, Founder and CTO of Infinitive, as well as Senior Software Engineer at Pearson, Matt Tesauro! Matt will be covering application security programs and how to approach it through a combined framework of Agile, DevOps, and CI/CD.
About the Topic
How many applications are in your company’s portfolio?
What’s the headcount for your AppSec team?
Whatever your situation is, I am sure the numbers are not in your favor. This talk covers the OWASP AppSec Pipeline project which provides real world examples from AppSec programs at several different companies who have seen increases of 5x in productivity. Companies covered include Rackspace with approximately 4,000 employees and Pearson with 40,000 . Both have an international presence and far more apps and developers that AppSec staff. The talk will also cover the key principles to speed and scale up AppSec programs using an AppSec Pipeline as well as practical examples of these practices put into use. Start early and begin to buy down the technical security department by leaving the traditional AppSec program thinking behind.
If you have any questions at all, feel free to contact us at firstname.lastname@example.org.
Thanks for reading Signal Sciences Labs. If you enjoy our publication, please let us know by clicking that little heart below.
At Signal Sciences we are building the industry’s first Next Generation Web Application Firewall (NGWAF). Our NGWAF was built in response to our own frustrations of trying to use legacy WAFs while enabling business initiatives like DevOps, cloud adoption and continuous delivery. The Signal Sciences NGWAF works seamlessly across cloud, physical, and containerized infrastructure, providing security without breaking production traffic.