Securing DevOps - Common Misconceptions - DefCamp - 2019

Explore a comprehensive conference talk from DefCamp 2019 addressing common misconceptions in securing DevOps. Delve into the evolving DevOps culture, examining the shift in mindset from traditional approaches to modern practices in the digital industry. Learn about building resilient models, securing development environments, and understanding potential attack scenarios. Discover key takeaways on threat modeling, LDAP security, code analysis, quality assurance, and man-in-the-middle attacks. Gain valuable insights from this 46-minute presentation, part of Eastern Europe's premier Hacking & Information Security conference, which brought together nearly 2,000 attendees from 40 countries in Bucharest, Romania.

Intro
What is DevOps culture
Change in mindset
People
Old way
New way
The digital industry
Building a model
The dev environment
Production compromised
Attack scenario 1
Top 10
Build resiliency
Four eyes principle
Key takeaways
Threat modeling
LDAP
Code analysis
QA
Man in the Middle