DevSecOps

This track is focused on DevSecOps

All DevSecOps Sessions

TitleTrackYearMonth
A call for MetricsDevSecOps2024Jan
A workshop on DAST and how to put it into your pipelineDevSecOps2022May
Abuse Tests for DevelopersDevSecOps2022Jan
AI and AppSec: are we finally on the verge of the big breakthrough?DevSecOps2024Dec
AMA with Jeremiah GrossmanDevSecOps2021Jan
AMA with Jim ManicoDevSecOps2021Jan
An AppSec guide to practical cryptographyDevSecOps2023Feb
Anticipating the Future: Strengthening App Security through Developer-Centric ForesightDevSecOps2023Oct
API Security by DesignDevSecOps2024Jan
Application Security vulnerabilities - measurements, maturity magicĀ - Vulnerability Framework ProjectDevSecOps2023Apr
Applying Zero Trust Principles to OT/ICS (Operational Technology & Industrial Control Systems)DevSecOps2022Jul
AppSec Threats Deserve Their Own Incident Response PlanDevSecOps2023Oct
AppSec Trending & recommendations:Fixing Security in Cloud & AppsecDevSecOps2022May
AttackGen: Harnessing Language Models for Cybersecurity SimulationsDevSecOps2023Oct
Automation and scale with OWASP ZAPDevSecOps2022Dec
AWS Security Hub (Panel)DevSecOps2023Feb
Beat Alert Fatigue with Cyber Asset Relationship GraphsDevSecOps2022May
ChatGPT and GenAI Privacy - Massive Uncertainty and Massive OpportunityDevSecOps2023Oct
Check out their (lateral) moves! The importance of blast radius in DevSecOpsDevSecOps2021Nov
Cloud-Native Security Tools: Enhancing Cloud Protection Capabilities(Panel)DevSecOps2023Oct
Compliant Kubernetes - Case StudyDevSecOps2021Apr
Context is king; Prioritization is queen, and CVSS is deadDevSecOps2022Dec
Continuous Access Control with OPAL and CedarDevSecOps2023Jun
Cooking the perfect docker container for a react app Part 2DevSecOps2022Jan
Creating 1 million kubernetes pods - Lessons learnedDevSecOps2021Apr
Creating a Scalable API Test Framework using AWS and ElasticDevSecOps2021Nov
Creating Secure Builds of ContainersDevSecOps2020Dec
Creating the GenAI Athena Bot from the theCyberboardroom.comDevSecOps2023Oct
CVSS, CVE, Vulnerabilities and the land of broken dreamsDevSecOps2022Sep
DAST - Dynamic Analysis integration labDevSecOps
Dependency scanning labDevSecOps
DevSecOps beyond CI/CD pipelinesDevSecOps2022Sep
DevSecOps for Modern Identity and Access ManagementDevSecOps2022Sep
DevSecOps Maturity Model UpdatesDevSecOps2023Oct
Docker For Security ProfessionalsDevSecOps2022May
Doing Compliance Differently: Policies as Code, Evidence-based compliance through automationDevSecOps2022Mar
DSOMM News and Belts-WorkshopDevSecOps2021Sep
Embrace Secure Defaults, Block Anti-patterns, and Kill Bug Classes with SemgrepDevSecOps2020Dec
Fundamentals of Cloud Security, Threat Identification, AWS ServicesDevSecOps2022Jan
GitHub Actions & code scanning with CodeQLDevSecOps
Going Multicloud: Securing Human and Service Identities in AWS vs AzureDevSecOps2021Nov
Hack your own app!DevSecOps2022May
How can we make Grafana a great open source security tool?DevSecOps2022May
How GenAI Agents will Dramatically Change our IndustryDevSecOps2023Oct
How to Operate a Secure Kubernetes platformDevSecOps2023Feb
How Variant Analysis and CodeQL helped secure the fight against COVID-19DevSecOps2021Jan
How we build a security automation software utilizing open-source components (Betterscan.io)DevSecOps2023Feb
Infrastructure scan & EncryptionDevSecOps
IoT and Cyber Threat Intelligence: Staying Ahead of the Curve (Panel)DevSecOps2024Feb
Jim and Dinis Talk AppsecDevSecOps2022May
Jira-Jupyter integration introductionDevSecOps
Kubernetes SecurityDevSecOps2022May
Lessons learned from trying to create Architecture Diagrams As CodeDevSecOps2022Mar
LGTM in actionDevSecOps
Linux (kernel) containerization without Docker/runc/OCIDevSecOps2023April
Living off the Land & Fileless Attacks - Move Beyond the "Known Bad"DevSecOps2022Dec
Low-code access control: Making the complex world of permissions approachable to everyoneDevSecOps2022Dec
Mitigating Risks Through Open-Source Bitcoin TracingDevSecOps2021Apr
Open Policy AgentDevSecOps2022Dec
Open Security Control Testing at ScaleDevSecOps2022Mar
Open source modern access controlDevSecOps2022May
OSS DevSecOps projetDevSecOps2021Sep
Overview of the new DSOMM ApplicationDevSecOps2022Sep
OWASP DSOMM Enhancement WorkshopDevSecOps2021Apr
OWASP Top Ten Part 2DevSecOps2022Mar
Owning AppSec Automation with PythonDevSecOps
Parsec-Hardware security at your fingertipsDevSecOps2022Mar
Permission Models As Code - Securing the Entire StackDevSecOps2022Sep
Privacy As Code: Open-Source Developer Tools For Data PrivacyDevSecOps2022Jan
Privacy-The Challenges in Post Tornado Cash WorldDevSecOps2022Dec
Protect Your Application, Not Just the Network. Add Zero Trust Superpowers to Your Critical Applications and SystemsDevSecOps2023Oct
Purple Teaming with OWASP PurpleTeamDevSecOps2022Mar
Ransomware Resilience: Strategies for Prevention and Recovery (Panel)DevSecOps2024Feb
SAST - Static Analysis integration labDevSecOps
Scaling Incident Response using Jira, Jupyter and GSuiteDevSecOps2021Jan
Scaling Kubernetes - One Pod per fileDevSecOps2021Jun
Scaling Threat Models visualisations using PlantUML and VisJSDevSecOps2020Dec
Scaling Your Security Program with SemgrepDevSecOps2021Jun
SDA SE Cluster Scanner is going Open SourceDevSecOps2021Mar
Secrets and credentials scanning labDevSecOps
Secured Digital WorkspaceDevSecOps2022May
Securing CI/CD runners through eBPF agentDevSecOps2024Jan
Security as Code: A DevSecOps ApproachDevSecOps2022Mar
Security-Scan your production imagesDevSecOps2021Sep
Shift Smart - risk based approach on appsecDevSecOps2023Jun
Shift-Right Security: Emphasizing Post-Deployment Monitoring and Response (Panel)DevSecOps2023Oct
Shodan OSINT Automation to Mass Exploitation of VulnerabilitiesDevSecOps2022Jan
SOAR - Security Orchestration, Automation, and Response (Panel)DevSecOps2023Feb
Sonar Cube Integrations with GitHubDevSecOps2020Dec
Spreading security across the SDLC (with semgrep and other tools)DevSecOps2021Mar
Starbase - Graph-based security analysis for everyoneDevSecOps2022Mar
Stop Committing Your Secrets - Git Hooks To The RescueDevSecOps2024Jan
Taking Your DevOps Tooling To The Dark SideDevSecOps2023Jun
Testing Ephemeral Kubernetes ApplicationsDevSecOps2021Jun
The Rise of AI Security EngineersDevSecOps2024Jun
Threat Modeling Kata VIDevSecOps2024Dec
Threat Modeling VDevSecOps2024Jun
To DevSecOps or not to DevSecOps: is that a question?DevSecOps
Tune your Toolbox for Velocity and Value (SCA)DevSecOps2022Mar
Using AppMap runtime code visualizations to scout for security flawsDevSecOps2022Mar
Using Domain Specific Languages (DSL) for testingDevSecOps2021Jan
Using Elastic and Kibana for Scale and Security VisualisationDevSecOps2021Nov
Using Kubernetes to create a scalable Security Proxy solutionDevSecOps2020Oct
Using Open Source AppMap for Runtime Security AnalysisDevSecOps2022Dec
Using OWASP Nettacker for Recon and Vulnerability ScanningDevSecOps2022Jul
Using Splunk for Incident Response (Panel)DevSecOps2023Dec
Using Teleport to Secure SSH and Kubernetes AccessDevSecOps2021Nov
Using VPC Flows to monitor EC2 TrafficDevSecOps2021Apr
WordPress: Hacking and SecuringDevSecOps2022Dec
Yor:Automated IaC tag and traceDevSecOps2021Jun
Zero Trust Database Access Using OpenZiti and JDBCDevSecOps2023Apr
Zero Trust Network Access FrameworkDevSecOps2022Jul

About

The Open Security Summit is focused on the collaboration between, Developers and Application Security. Using the same model as the previous OWASP Summits, this 5-day event will be a high-energy experience, during which attendees get the chance to work and collaborate intensively.

Privacy Notice Cookie Policy

Contact

Crown House, 27 Old Gloucester Street, London, WC1N 3AX, United Kingdom. info@opensecsummit.org

Follow Us

twitter logo github logo slack logo youtube logo

Do you need help