Security in Software improvement Process • Radek Grebski • Devoxx Poland 2021

youtube.com 2 lat temu


On presentation I will present topics related to safety around Software improvement Process. From plan phase through commits to deployment and maintenance. Good practices, vulnerability scans (dependencies, images, containers). I will bring topics OWASP, CIS Benchmarks, Trivy, Distroless, Sops, Kubernetes.

Lecture took place on Wednesday 25th August 2021 at 14:40 in area 4

Co-Founder and CTO of Stepwise.pl, 12+ years of expirience in Software Development, developed more than 20apps, most written/designed from scratch. Fan of Kubernetes, Cloud, good practices, likes making life easier (for others and for myself).

Topics covered:
-Secure Software improvement Lifecycle (SSDL)
-Security at each phase of SSDL
-Examples of usage
*kube-bench (CIS Benchmark for k8s)
*detect-secrets
*Secrets OPerationS (sops)
*Trivy (CVE scanner)
*Starboard

#DevoxxPoland 2021 took place in the ICE Krakow legislature Centre on 25th – 27th August. During 3 days,
2.700 Devoxxians from 20 different countries attended #DevoxxPoland including 100+ speakers and another
600K developers enjoyed the presentations online. Making #Devoxx the biggest #Java conference in Poland.

Twitter: https://twitter.com/DevoxxPL
Instagram: https://www.instagram.com/grzegorz.duda.official/

Join us besides here:
Technology Radar Review: https://dworld.pl/radar
Developers planet Academy: https://dworld.pl/akademia
Devflix: https://devflix.pl

#IT #Development #SoftwareDevelopment