Modern security tools are easy to buy; it’s people’s mindsets and culture that are hard to change. Shutterstock’s AppSec team knew this when implementing a DevSecOps strategy throughout their organization. Its global digital media platform is built heavily on cloud native applications; including containers, microservices, and Kubernetes. Securing it all, at scale, has been no small task. A big focus area of this transition has been the people. How engineers and security teams work together and how they deal with security issues in their software delivery pipelines
Join this session to learn how Shutterstock’s Director of Product and Application Security, Christian Bobadilla, built security into the development culture of Shutterstock from the ground up. Christian will share his experience working with developers on embedding security throughout the SDLC, reducing vulnerabilities in their cloud native applications, and ultimately embracing a new security culture.