Panel: Lessons Learned from the DevSecOps Trenches presented at DevSecConSeattle 2019

by Justine Osborne, Zane Lackey, Clint Gibler, Doug Deperry, Hongyi Hu, Astha Singhal,

Summary : This panel is made up of practitioners who lead application security teams at the forefront of the DevSecOps shift at companies such as Dropbox, Netflix, Datadog, and Signal Sciences. We will share a number of lessons we had to learn the hard way to adapt our security programs. Specifically, we will share:1) Actionable advice on the approaches that have been successful for our programs2) Conversely, what didn't work. We'll share specifics of our own spectacular failures so audience members can learn from our pain on what to avoid3) Where and how to best invest in automation and techniques for scaling security