How DevSecOps can Help Reduce Software Supply Chain Security Risk



The software supply chain is the series of steps involved in developing, building, and delivering software. It includes everything from external dependencies, to writing code, to deployment. Improving supply chain security can happen in tandem with "shifting left," which means incorporating security into the software development lifecycle as early as possible. This move can help to identify and fix vulnerabilities early on, before they can cause problems in production. Teams still face challenges when shifting left because, while it may help reduce the operational burden, it can add far more responsibility and potential distraction earlier in the process. This includes a high volume of false positives in vulnerability detection and the need to configure and maintain more tools in the CI/CD pipeline. In this talk, we will discuss how DevSecOps on Google Cloud can help to reduce software supply chain security risk, and in a way that introduces less friction for developers when shifting left.

Speaker and Presenter Information

Aron Eidelman
Developer Relations Engineer, DevSecOps Advocate
Google

Relevant Government Agencies

Other Federal Agencies, Federal Government, State & Local Government

Members who viewed this event also viewed:


Event Type
Webcast


This event has no exhibitor/sponsor opportunities


When
Thu, Oct 19, 2023, 12:00pm - 1:00pm ET


Cost
Complimentary:    $ 0.00


Website
Click here to visit event website


Organizer
Google Cloud


Contact Event Organizer



Return to search results