The number an complexity of tools and techniques that make up good application security practices can be overwhelming. There are various application security testing tools, threat modeling processes, security requirements, as well as runtime security controls that need to be considered. This session will review the tools and practices that are essential to any application security program.
Speaker Bio
Manjunath Bhat
VP Analyst
Manjunath (Manju) Bhat is a Research VP in the software engineering practice covering technologies and practices related DevSecOps, SRE, cloud-native application development and software supply chain security. Mr. Bhat advises clients on a range of software engineering and platform engineering initiatives that cross over application development and infrastructure engineering boundaries.
Manjunath advises clients on how to develop and deploy software applications as well as on applying a software engineering mindset to infrastructure delivery. He is currently working on research around improving developer experience, implementing GitOps, platform engineering, observability-driven development and software supply chain security (SBOMs and open source software governance).
Read More
Read Less
Manjunath advises clients on how to develop and deploy software applications as well as on applying a software engineering mindset to infrastructure delivery. He is currently working on research around improving developer experience, implementing GitOps, platform engineering, observability-driven development and software supply chain security (SBOMs and open source software governance).
Monday, 13 February, 2023 / 11:00 AM - 11:30 AM IST
AppSec 101: The Application Security you Need now!
Tuesday, 14 February, 2023 / 10:30 AM - 11:15 AM IST
Ask the Expert: How to Mitigate Software Supply Chain Security Risks
Attackers are targeting software development systems, open-source artifacts and DevOps pipelines to compromise software supply chains. In this Ask the Expert session, we will answer questions on emerging trends such as software bill of materials, hermetic pipelines and binary authorization to mitigate risks both for internally developed applications and externally procured software.
Tuesday, 14 February, 2023 / 04:30 PM - 05:00 PM IST
Managing Open Source Software Risks in DevSecOps Environments
There are millions of open-source software projects in the world. Which ones are in your software? And what security, operational, and legal risks do they pose? Getting control and managing a myriad of risks requires information, process changed, and automated tools to spot and help remediate problems. In this session, we'll examine the various changes you should consider, along with the tools that can help in getting control.