Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

Security BSides Athens 2022 - Kiriaki Solomidou's, John Torakis' And George Tsigourakos' 'Talk 3 - Tales From The DevSecOps World. SIEM Completely "As Code"' →

July 03, 2022 by Marc Handelman in Security BSides Athens, BSides Athens 2022, Security Conferences, DevSecOps, DevSecOps Education

Our sincere thanks to Security BSides Athens for publishing their Presenter’s Security BSides Athens 2022 Conference content on the organization’s’ YouTube channel.

July 03, 2022 /Marc Handelman
Security BSides Athens, BSides Athens 2022, Security Conferences, DevSecOps, DevSecOps Education

Where’s The Sec?

Mike Rothman's Quick and Dirty DevSecOps: The Talk

November 12, 2018 by Marc Handelman in DevSecOps, Information Security

Via Mike Rothman of Securosis fame, comes his nice-and-tidy Quick and Dirty DevSecOps talk in blogpost form. Enjoy.

November 12, 2018 /Marc Handelman
DevSecOps, Information Security

OWASP APPSEC Cali 2018, Clint Gibler's 'SecDevOps: Current Research and Best Practices' →

April 10, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security, DevSecOps, DevOps, SecOps, SecDevOps, Infosec Coding
April 10, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security, DevSecOps, DevOps, SecOps, SecDevOps, Infosec Coding

OWASP APPSEC Cali 2018, James Wickett's 'The Path Of DevOps Enlightenment For InfoSec' →

April 09, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, DevOps, DevSecOps, SecDevOps, SecOps, Information Security
April 09, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, DevOps, DevSecOps, SecDevOps, SecOps, Information Security

OWASP APPSEC Cali 2018, Caroline Wong's 'The Only Reason Security Really Matters for DevOps' →

April 05, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security, SecDevOps, SecOps, DevSecOps
April 05, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security, SecDevOps, SecOps, DevSecOps

AWS, Journey Through the Cloud - Security Best Practices →

January 30, 2018 by Marc Handelman in AWS, Security Operations, DevSecOps, Network Security, Information Security
January 30, 2018 /Marc Handelman
AWS, Security Operations, DevSecOps, Network Security, Information Security

AWS, Automating Security in Cloud Workloads with DevSecOps →

January 29, 2018 by Marc Handelman in AWS, DevSecOps, DevOps, Security Operations, Security Automation, Security Architecture
January 29, 2018 /Marc Handelman
AWS, DevSecOps, DevOps, Security Operations, Security Automation, Security Architecture

DevSecOps AWS Kill Chain, The Demo →

January 18, 2018 by Marc Handelman in Automation, AWS, Kill Chain, Attack Kill Chain, DevSecOps
January 18, 2018 /Marc Handelman
Automation, AWS, Kill Chain, Attack Kill Chain, DevSecOps

BSides Nashville 2015, Ron Parker's 'Agile and Security Oil and Water' →

May 13, 2017 by Marc Handelman in All is Information, Code, Agile Development, Rugged DevOps, Rugged Security, DevSecOps, DevOps

Worth a repeat, should be a must watch for the DevOps and Agile 'teams' out there...

May 13, 2017 /Marc Handelman
All is Information, Code, Agile Development, Rugged DevOps, Rugged Security, DevSecOps, DevOps

OWASP, DevOops, I Did It Again →

November 19, 2015 by Marc Handelman in All is Information, DevOps, DevSecOps, Information Security
November 19, 2015 /Marc Handelman
All is Information, DevOps, DevSecOps, Information Security

All Your Automatonic Security Are Not Belong To Us →

June 22, 2015 by Marc Handelman in All is Information, Complexity, Automation, DevSecOps, DevOps

Well crafted thought piece appearing over at Darkmatters, a Norse blog, written by the inimitable Pete Herzog, regaling us with the truth of robotic security. Today's MustRead.

"The problem is that automating security creates a paradox. You see, in security, automation works best as a tool and not a wielder of tools. You see, your security automation is in charge of making periodic and systematic changes to controls and then verifying those changes." via Darkmatters, a Norse Security blog, by Pete Herzog

June 22, 2015 /Marc Handelman
All is Information, Complexity, Automation, DevSecOps, DevOps

DevSecOps Edition, 10+ Hours of Information Security + DevOps Video →

June 04, 2015 by Marc Handelman in All is Information, Application Security, Automation, Code, DevOps, Information Security, Education, DevSecOps

The kind folks at DevOps have made their video collection of HD quality Security DevOps content from RSAC 2015 available (with the only catch of a registration form). Highly recommended.

'DevOps Connect was co-produced by DevOps.com and Sonatype, through the Nexus Community Project. The day started with a keynote delivered by Gene Kim and Joshua Corman, setting the stage for 13 more presentations.' - via Devops' Alan Shimel

June 04, 2015 /Marc Handelman
All is Information, Application Security, Automation, Code, DevOps, Information Security, Education, DevSecOps