How to Secure App Pipelines скачать в хорошем качестве

How to Secure App Pipelines

Overview Applications have evolved into containers and microservices deployed in fully automated and distributed environments across data centers and in AWS. This webinar focuses on the security of the continuous integration and continuous deployment (CI/CD) pipeline and security automation. In this prerecorded webcast, SANS senior instructor Dave Shackleford and AWS Solutions Architect David Aiken discuss how to improve and automate security across the entire CI/CD pipeline and runtime environment. Specifically, attendees will learn: App security concepts specific to cloud environments, including management of secrets, security of APIs, serverless applications and security, and privilege management The stages of a cloud-oriented development pipeline and how security can tie into the CI/CD pipeline How to mitigate disruptions caused by perimeter-based and legacy security tools that don't fit into CI/CD practices Solutions for securing your app pipeline in your AWS environment Register today to be among the first to receive the associated whitepaper written by cloud security expert Dave Shackleford. Speaker Bios Dave Shackleford Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance. David Aiken David Aiken is a Solutions Architect Manager at AWS Marketplace and is an AWS Certified Solutions Architect. He leads a team of specialist SA’s that help customers implement security and governance best practices. His skills include cloud computing, enterprise architecture, agile methodologies, web services, and software design and development. David has also worked as a product manager, technical specialist, and architect evangelist.