Welcome to Scribd!

Skip carousel

Savinder Puri DevSecOps Sec Adds The Glitter in DevSecOps 1

Uploaded by

Mohammed Kais

0% found this document useful (0 votes)

4 views29 pages

Original Title

Savinder Puri DevSecOps Sec Adds the Glitter in DevSecOps 1

Copyright

Available Formats

PPTX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pptx, pdf, or txt

0% found this document useful (0 votes)

4 views29 pages

Savinder Puri DevSecOps Sec Adds The Glitter in DevSecOps 1

Uploaded by

Mohammed Kais

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pptx, pdf, or txt

Jump to Page

You are on page 1of 29

Search inside document

Savinder Puri

DevOps Evangelist,
Zensar Technologies, UK

@savinderpuri
savinderpuri@gmail.com
Engineering (Computers), Ambassador at DevOps Institute
Class of 2000 & CDF

Savinder Puri
DevOps Evangelist,
Zensar Technologies, UK

Published author Reiki Grandmaster &

(Available on Amazon worldwide) Angelic Healer

YOUR LOGO
HERE
https://amzn.to/3gu5tu0
DevOps LOVES ‘Sec’.
It adds the glitter to DevSecOps!

Everyone knows that Security

isn’t a real tool/process, it’s a mindset
Everywhere that you go,
add a bit of ‘sec’!

That’s how you make the security mindset actionable

Glitter the entire SDLC!!!

PO, UX, Dev, Testers, Ops, Network...

everyone has a part to play!
https://digital.ai/periodic-table-of-devops-tools
https://www.sonatype.com/referencearchitecturetestdrive
Why can’t we get our actors together?

“loss of control”
DevSecOps will give you the “Andon Cord”!
CI/CD Pipelines
+ Alerts (thresholds)
+ Discipline

-------------------------------
= Andon Cord
-------------------------------

https://medium.com/@jjruescas/to-improve-pull-the-cord-ec309fa9d701
Jenkins CI/CD pipeline

https://medium.com/@jjruescas/to-improve-pull-the-cord-ec309fa9d701
Beware of the “SonarQube Circle!”
Follow the iterative approach here...

Nothing succeeds like success!

With “Compliance-as-code (CaC)”, ‘
sec’ will go everywhere!

That’s how you make the security mindset actionable

Jenkins Pipeline for
SonarQube Quality Gate

https://www.jenkins.io/doc/pipeline/steps/sonar/
Illustrative example with Qualys (love the representation!); there are several other toolset options out there

https://bit.ly/34Ohadd
Once you get ‘sec’ into the DNA,
it just organically spreads everywhere!
THANK YOU!
Meet me in the Network Chat
Lounge for questions

Implementing DevSecOps with Docker and Kubernetes: An Experiential Guide to Operate in the DevOps Environment for Securing and Monitoring Container Applications
From Everand
Implementing DevSecOps with Docker and Kubernetes: An Experiential Guide to Operate in the DevOps Environment for Securing and Monitoring Container Applications
José Manuel Ortega Candel
No ratings yet
Azure Devops Complete Ci CD Pipeline PDF
Document109 pages
Azure Devops Complete Ci CD Pipeline PDF
Manish Malhotra
100% (7)
DevSecOps Presentation
Document20 pages
DevSecOps Presentation
cheenu
100% (4)
DevOps Bootcamp
From Everand
DevOps Bootcamp
Mitesh Soni
No ratings yet
Introduction to Java Programming, 2nd Edition
From Everand
Introduction to Java Programming, 2nd Edition
Sham Tickoo
Rating: 5 out of 5 stars
5/5 (1)
Azure DevOps
Document59 pages
Azure DevOps
Yogesh Arasu
No ratings yet
Wind River CI CD Ebook v5b
Document21 pages
Wind River CI CD Ebook v5b
Vinay Venkatesh
No ratings yet
Dev Sec Ops
Document181 pages
Dev Sec Ops
Khải Ngô Quang
100% (2)
DevOps Orientation
Document11 pages
DevOps Orientation
ahmad jan
No ratings yet
Rajeshkumar Devops CV
Document6 pages
Rajeshkumar Devops CV
Rakesh Kumar
No ratings yet
An Introduction To Immutable Infrastructure Using Azure Devops Pipelines
Document57 pages
An Introduction To Immutable Infrastructure Using Azure Devops Pipelines
Ayeni Ayomide
No ratings yet
Site Reliability Engineering Sre Certification Training Course
Document33 pages
Site Reliability Engineering Sre Certification Training Course
Devi Vara
No ratings yet
Cadence Manual
Document51 pages
Cadence Manual
api-27099960
100% (4)
Azure DevOps
Document106 pages
Azure DevOps
Jean
100% (2)
A Pragmatic Approach To Overcoming Devops Implementation Roadblocks
Document18 pages
A Pragmatic Approach To Overcoming Devops Implementation Roadblocks
Roberto Santana
No ratings yet
Untitled
Document6 pages
Untitled
Som Mirgane
No ratings yet
Career Summary: Rajesh Kumar Principle Architect Devops, Devsecops, Sre & Microservices
Document6 pages
Career Summary: Rajesh Kumar Principle Architect Devops, Devsecops, Sre & Microservices
Sandip Sahu
No ratings yet
Devops
Document177 pages
Devops
HarenderSinghNegi
No ratings yet
CC Slides
Document12 pages
CC Slides
Ravi
No ratings yet
MeetTheStuido - CloudOps
Document16 pages
MeetTheStuido - CloudOps
Carlos Ch
No ratings yet
1.introduction, CI CD
Document14 pages
1.introduction, CI CD
Jayanth
No ratings yet
Etw Net PDF Jan18 PDF
Document90 pages
Etw Net PDF Jan18 PDF
María Armijos
No ratings yet
Dev Ops
Document37 pages
Dev Ops
Zlatko Pažin
No ratings yet
Devops Engineer: Remote
Document2 pages
Devops Engineer: Remote
Veljko Lucic
No ratings yet
Hacking and Securiting Docker Containers
Document119 pages
Hacking and Securiting Docker Containers
asetrauk
No ratings yet
Cicd 4
Document11 pages
Cicd 4
rajeshchahar1983
No ratings yet
DevSecOps Professional Datasheet v1.5 Detailed
Document7 pages
DevSecOps Professional Datasheet v1.5 Detailed
dono
No ratings yet
AzureDevOps TaraWalker
Document36 pages
AzureDevOps TaraWalker
vrjpower
100% (1)
18 July - Cara Mengawali Karir Sebagai DevOps
Document20 pages
18 July - Cara Mengawali Karir Sebagai DevOps
Josef Lopez
No ratings yet
18 July - Cara Mengawali Karir Sebagai DevOps
Document20 pages
18 July - Cara Mengawali Karir Sebagai DevOps
Josef Lopez
No ratings yet
Devops Engineer Responsibilities: Profile Summary
Document12 pages
Devops Engineer Responsibilities: Profile Summary
Sai Ganesh Reddy Kasireddy
No ratings yet
DevSecOps Notes
Document2 pages
DevSecOps Notes
sandeep darla
No ratings yet
Emeak
Document3 pages
Emeak
Santosh Recruiter
No ratings yet
4 - Continous - Integration - Using - Classic - Build - Pipeline-Cicd Docs
Document7 pages
4 - Continous - Integration - Using - Classic - Build - Pipeline-Cicd Docs
Gagana
No ratings yet
Rajalakshmi R B - DevOps Engineer
Document5 pages
Rajalakshmi R B - DevOps Engineer
sharmilarb28
No ratings yet
Ci/Cd Pipelines For Devsecops With Hybrid Cloud: Michael Fraser - @itascode Co-Founder & Ceo, Refactr
Document15 pages
Ci/Cd Pipelines For Devsecops With Hybrid Cloud: Michael Fraser - @itascode Co-Founder & Ceo, Refactr
raznoe1
No ratings yet
Devops
Document3 pages
Devops
Sandeep Sesham
No ratings yet
Integrate Docker With CI/CD Pipelines
Document17 pages
Integrate Docker With CI/CD Pipelines
Steven
No ratings yet
Wa0001.
Document11 pages
Wa0001.
syd etltest
No ratings yet
Azure Devops - Google Search
Document2 pages
Azure Devops - Google Search
sai vishnu vardhan
No ratings yet
Generic Pipelines Using Docker: The DevOps Guide to Building Reusable, Platform Agnostic CI/CD Frameworks
From Everand
Generic Pipelines Using Docker: The DevOps Guide to Building Reusable, Platform Agnostic CI/CD Frameworks
Brandon Atkinson
No ratings yet
DevSecOps for .NET Core: Securing Modern Software Applications
From Everand
DevSecOps for .NET Core: Securing Modern Software Applications
Afzaal Ahmad Zeeshan
No ratings yet
Hands-on Azure Pipelines: Understanding Continuous Integration and Deployment in Azure DevOps
From Everand
Hands-on Azure Pipelines: Understanding Continuous Integration and Deployment in Azure DevOps
Chaminda Chandrasekara
No ratings yet
ARDUINO DETECTION: Harnessing Arduino for Sensing and Detection Applications (2024 Guide)
From Everand
ARDUINO DETECTION: Harnessing Arduino for Sensing and Detection Applications (2024 Guide)
ADDISON GARDNER
No ratings yet
Azure DevOps for Web Developers: Streamlined Application Development Using Azure DevOps Features
From Everand
Azure DevOps for Web Developers: Streamlined Application Development Using Azure DevOps Features
Ambily K K
No ratings yet
The DevSecOps Playbook: Deliver Continuous Security at Speed
From Everand
The DevSecOps Playbook: Deliver Continuous Security at Speed
Sean D. Mack
No ratings yet
DevOps and Containers Security: Security and Monitoring in Docker Containers
From Everand
DevOps and Containers Security: Security and Monitoring in Docker Containers
Jose Manuel Ortega Candel
No ratings yet
Azure DevOps Engineer: Exam AZ-400: Designing and Implementing Microsoft DevOps Solutions
From Everand
Azure DevOps Engineer: Exam AZ-400: Designing and Implementing Microsoft DevOps Solutions
Rob Botwright
No ratings yet
AWS DevOps Engineer Professional Certification Guide: Hands-on guide to understand, analyze, and solve 150 scenario-based questions (English Edition)
From Everand
AWS DevOps Engineer Professional Certification Guide: Hands-on guide to understand, analyze, and solve 150 scenario-based questions (English Edition)
Sumit Kapoor
No ratings yet
ARDUINO CODING: A Comprehensive Guide to Arduino Programming (2024 Crash Course)
From Everand
ARDUINO CODING: A Comprehensive Guide to Arduino Programming (2024 Crash Course)
NORMAN BOWEN
No ratings yet
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux
From Everand
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux
Alessandro Del Sole
Rating: 2.5 out of 5 stars
2.5/5 (1)
DevOps with Windows Server 2016
From Everand
DevOps with Windows Server 2016
Ritesh Modi
No ratings yet
ARDUINO CODE: Mastering Arduino Programming for Embedded Systems (2024 Guide)
From Everand
ARDUINO CODE: Mastering Arduino Programming for Embedded Systems (2024 Guide)
PIERCE SPRAGGINS
No ratings yet
Securing the CI/CD Pipeline: Best Practices for DevSecOps
From Everand
Securing the CI/CD Pipeline: Best Practices for DevSecOps
Sai Sravan Cherukuri
No ratings yet
The Complete ASP.NET Core 3 API Tutorial: Hands-On Building, Testing, and Deploying
From Everand
The Complete ASP.NET Core 3 API Tutorial: Hands-On Building, Testing, and Deploying
Les Jackson
No ratings yet
Beginning Jenkins Blue Ocean: Create Elegant Pipelines With Ease
From Everand
Beginning Jenkins Blue Ocean: Create Elegant Pipelines With Ease
Nikhil Pathania
No ratings yet
Docker Tutorial for Beginners: Learn Programming, Containers, Data Structures, Software Engineering, and Coding
From Everand
Docker Tutorial for Beginners: Learn Programming, Containers, Data Structures, Software Engineering, and Coding
Andrew Lee
Rating: 5 out of 5 stars
5/5 (1)
Amazon EC2 Cookbook
From Everand
Amazon EC2 Cookbook
Reddy Sekhar
No ratings yet
Mastering Swift Package Manager: Build and Test Modular Apps Using Xcode
From Everand
Mastering Swift Package Manager: Build and Test Modular Apps Using Xcode
Avi Tsadok
No ratings yet
Introducing Jakarta EE CDI: Contexts and Dependency Injection for Enterprise Java Development
From Everand
Introducing Jakarta EE CDI: Contexts and Dependency Injection for Enterprise Java Development
Luqman Saeed
No ratings yet