Amazon’s approach to DevSecOps practices
Leo Zhadanovsky
Chief Technologist, Education, Worldwide Public Sector
Amazon Web Services
DevSecOps is the practice of integrating and automating the enforcement of preventive, detective, and responsive security controls into the DevOps lifecycle. Amazon deploys new software to its development and production servers at an average of more than one deployment per second. Join this chalk talk to learn about Amazon’s DevSecOps best practices through the entire lifecycle, as well as how Amazon uses DevSecOps practices to deliver new application features at a high velocity while ensuring security and compliance. See real-world examples of tooling and frameworks that demonstrate DevSecOps best practices.
Interested in Tooling?
Visit our Tooling community!
We are using more and more tools every day. Here we discuss new and all tools every CTO or engineering leader should be aware of, we share feedback and best practices and help each other to use tools more efficiently. Currently, our main topics are Project management, CI/CD, Feature flagging, Security, Incident Response, Reliability/chaos engineering, monitoring/observability, low code/no-code/Serverless, Hosting.
VIDEOS RELATED TO TOOLING
Karim Butt, Cofiunder & CTO at GlossGenius
Rebecca Parsons, CTO at ThoughtWorks
John Difini, VP of Technology at LT Trust
John Goode, Director of Engineering at TopstepTrader
Nofar Asselman, VP at Epsagon
Jay Zeschin, VP of Technology at Highwing
Ben Sigelman, CEO and Cofounder at Lightstep
Andrew Montalenti, Chief Product Officer at Parse.ly
Tim Berglund, Sr. Dir. of Developer Advocacy at Confluent
Heidi Waterhouse, Developer Advocate at LaunchDarkly
Will Maier, CISO at Even Responsible Finance, Inc
James Smith, CEO and Co-Founder at Bugsnag

Copyright © 2024 CTO Connection, All Rights Reserved