Security and DevOps Are Really Best Friends

Explore the synergy between security and DevOps in this 49-minute conference talk from BSidesLV 2018. Delve into Emily Gladstone Cole's insights on empathy, automation, and asset management in cybersecurity. Learn about effective strategies for vulnerability scanning, patching, and privilege management. Discover the importance of audits, logs, and data protection in GitHub and S3 buckets. Gain valuable knowledge on building test environments, fostering transparency, and implementing realistic security operations. Understand the significance of continuous learning, job opportunities, and rewards in the field. Conclude with a comprehensive summary on policy-making and customer data protection in the intersection of security and DevOps practices.

Introduction
Emilys background
Assets
Agenda
Empathy
Automation
Books
Asset
Location
The Lesson
What do you do
DHCP logs
Asset tracking
DevOps
Vulnerability Scanning
Automated Vulnerability Scanning
Asset Updates
Asset Life Cycles
Patching in Lifecycle
Lease Privilege
Audits
Logs
Data Protection
Github
S3 buckets
Build a test environment
Security operations
Transparency
Realistic
Respect
Learning
Jobs
Reward
Summary
I Am Policy
Customer Data