Can DevOps and Security be Friends?
Presented by: Zach SteindlerTime: Friday, Jan. 11, 2:45 PM - 3:45 PM
Security for DevOps is only getting more complicated. 2018 saw a whole new class of CPU vulnerabilities, not to mention an explosion of hosted cloud infrastructure options. How should DevOps folks address security concerns while also, y'know, doing all the other things their job requires? In this talk, we'll go over how to think about securing infrastructure more like a cool-headed economist and less like Chicken Little. We'll go over threat modeling and how to make pragmatic tradeoffs when cloud infrastructure security configuration is limited. We'll also go over how to measure progress (if you aren't into that sort of thing, your boss might be!) Lastly, we'll take these techniques and apply it to another 2018 darling, Zero Trust Networking, and separate the hype from projects that can make you more secure while decreasing operational toil.Room: Sagewood / ZebrawoodLevel: Intermediate