Our economy is almost entirely digitized. Modern businesses rely on software to run their day-to-day operations, and, as such, innovation must meet the demands of an ever-evolving market. However, business leaders are at a crossroads when it comes to securing their digital assets. As organizations migrate towards development practices like DevOps, the need to produce software faster becomes as much of a liability as a competitive advantage if left unchecked. If business leaders want to evolve beyond DevOps into DevSecOps, there are cultural, technological, and procedural implications that need to be considered. Get a handle on this shift and what it means for you by attending our Virtual Summit, Assembling the Pieces of the DevSecOps Puzzle, on February 28. Executives will get practical tips and advice on their role in a DevSecOps world, including:
Change often comes from the top. In order to inspire your developers to code securely, you’ll need to make sure they feel empowered to do so. CA Veracode’s own VP of Engineering, Maria Loughlin, will speak directly from her own experiences as a development leader on what inspires developers to not only code for features and function, but for security as well. Maria will discuss how business leaders can guide their developers towards secure coding education outside the office and how aligning development goals with security can foster a culture of secure coding across the entire development community. Furthermore, she will touch upon how to bridge organizational gaps between the security and development teams to ensure that everyone is speaking the same language.
We live in an era where security can actually be considered a competitive advantage. However, that advantage can only be fully realized when security is integrated into the software development lifecycle. CA Veracode’s 2017 State of Software Security report found that developers who scan code earlier and more often in the development process fix 48 percent more flaws. This is not by accident. Tim Jarrett, Director of Product Strategy at CA Veracode, will discuss how business leaders can provide the resources to make security invisible to their developers by integrating into developer tools like IDEs, ticketing, bug tracking and build systems. Tim will discuss how investing in security up front can maintain your speed-to-market and drastically save on remediation costs later on.
It may be time to rethink how we hire AppSec professionals. By 2019, 2 million cybersecurity jobs will be open; the openings for your cybersecurity team will be among them. Since developers are the ones producing code and creating the innovations that fuel our digital economy, shouldn’t they be included in the solution to integrate security into development? Chris Wysopal, Co-Founder and CTO of CA Veracode, will discuss what these paradigm shifts mean for security professionals and how you, as a business leader, can make sure you are implementing the right resources to manage your application security program.