Name: DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?
Start: 2022-10-18T18:00:00Z
End: 2022-10-18T18:00:25.000Z
Location: BrightTALK
Rating: 5

Finally, the intelligence, agility, and security you need to create innovative digital experiences customers trust.

Organizations are under constant pressure to maintain a competitive edge by innovating and delivering secure applications more rapidly. According to a recent study by IDC, they predict that by 2027, AI will dramatically increase developer velocity by automatically generating code to meet functional business requirements for 80% of new digital solutions.  

Join Digital.ai experts Tina Sturgis, Ankur Trivedi and guest speaker, Katie Norton, Research Manager at IDC for an insightful discussion on how AI is transforming the software development lifecycle (SDLC) by boosting developer productivity and addressing key challenges.  

During this webinar you’ll learn how to: 
- Boost Developer Productivity: Discover how AI coding assistants are automating routine tasks, allowing developers to focus on creative problem-solving and innovation. 
- Address Key Challenges: Explore strategies for ensuring the security and quality of AI-generated code, managing increased code volume, and optimizing testing and deployment processes. 
- Adjust Across the SDLC: Learn about essential adjustments needed for increased code volume and velocity, including enhanced automation, visibility, governance, and standardization.

Are YOU Prepared For AI- Assisted Software Development? Understanding Impacts and Defining Solutions Across the SDLC

Efficient Agile and DevOps Practices have made mobile, web, and desktop apps from Financial Services companies more ubiquitous than ever. While these efficiencies greatly enhance the customer experience, they also present an enticing attack surface to threat actors.

Join us for an ethical hacking seminar where you’ll learn:

-Why threat actors specifically target financial services applications
-The top tactics, techniques, and practices threat actors will use in 2023 and beyond
-How DevSecOps defense-in-depth protects your apps and organization from attacks
-The benefits of obfuscation, anti-tamper, and RASP (Runtime App Self-Protection)

Ethical Hacking: The Future of Attacks on Financial Services

In the past year, AI’s usage has grown massively to where an estimated 92% of developers are using AI coding tools. While the benefits of being able to increase productivity and release velocity are too great to ignore, there are also some challenges that must be addressed.

In this webinar, you’ll be joined by Adam Kentosh, Sr. Director, Sales Engineering, and Jonny Steiner, Product Marketing Manager, of Digital.ai as they explain how to make AI code secure, private, and compliant. They will share a variety of best practices, including:

• Avoiding security vulnerabilities by applying policies specified as code enforcement
• Mitigating risks of copyright infringement with automated checkpoints on AI-assisted code
• Ensuring compliance with automated audit reports with full traceability
• And more

Tune in now to find out how you can overcome the vulnerabilities of AI generated code and keep your data private.

AI-generated code: Best practices to stay secure, private, and compliant

Last year, Digital.ai reported that the FinServ and gaming sectors were the most likely to be attacked among all industry verticals. Now, in 2024, the vulnerability of the gaming industry has dramatically escalated, with 67% of monitored apps falling victim to attacks. This outpaces even the FinServ sector. These findings highlight the urgent need for robust application security across all industries.

The new 2024 Application Threat Report sheds light on these critical issues and the confluence of several factors, such as the role of AI in malware creation, the monetization of attacks, and the nationalization of attacks.

In this webinar, you’ll gain expert insights into the most impactful highlights of the report. Discover:

• The specific risks facing your apps and your industry
• The surprising link between app popularity and attacks
• Proactive strategies to safeguard your apps in the wild
• And more

2024 Application Threat Report: Highlighting key takeaways

With compounding pressures to deliver software as quickly as possible, hear how Eric Haynes, Principal Engineer, GE Vernova has been able to successfully transform some key DevOps processes over the last 15 years. Partnering with Digital.ai, GE Vernova has been able to accomplish improved, repeatable software delivery, faster time to market, and reduced defects in production.

Join us to hear how GE Vernova was able to:
- Provide standardization and governance across software packages through deployment management
- Shift manual tasks to automated workflows with release orchestration, reducing human error and shortening time to market
- Significantly reduce resolution time while maximizing uptime for their production environments
The conversation will be moderated by Ankur Trivedi, Global DevOps Practice Lead at Digital.ai.

GE Vernova’s DevOps Journey with Digital.ai

Agile practices have been evolving for 17 years, and the dynamic business environment is shifting faster all the time – we need Agile more than ever. Agile methodologies have proven they can transform the way businesses succeed, but Agilists are encountering more and greater challenges, so it's time to ask: Where does Agile go from here? 

Join this engaging webinar, sponsored by Digital.ai, as an expert panel discusses the key findings from the 17th State of Agile Report, addressing crucial questions such as: 

- What are the big changes for Agile in 2024? Where will we pivot next? 
- Why is Agile the best way to handle externally-driven changes as well as ongoing internal challenges? 
- How can we bridge the gap between team-level success and business leaders to overcome the time, money, and risk challenges in Agile adoption?

What is the Future of Agile in the Age of Continuous Pivots?

Did you know that 55% of apps were run in unsafe environments or with modified code? Don’t let your application become another statistic!

The DevSecOps model seeks to unite security and DevOps with the shared goal of rapid and secure software delivery. A powerful aspect of this approach is Application Hardening – the innovative practice of obfuscating code, monitoring apps in the wild, and giving apps the ability to react to attacks.

Watch our Digital.ai webinar with guest speaker Katie Norton, IDC Senior Research Analyst renowned for her expertise in DevSecOps, to discover the secrets of securing your applications in today’s ever-evolving threat landscape. Katie will also discuss how to:

-Improve security posture with build-time application hardening without burdening developers
-Gain visibility into potential attacks through tampering protections
-Empower applications to automatically react to attacks with Runtime Application Self-Protection (RASP)
-Integrate app hardening with DevOps processes

Application Hardening as Part of a Holistic DevSecOps Strategy

Large-scale software releases across hybrid environments present a unique challenge, especially for organizations in highly regulated industries. These organizations are tasked with a formidable endeavor: balancing the critical need for consistent, streamlined processes to ensure compliance and security against the mounting pressure to innovate and deliver at pace. This balancing act has seen many traditional entities struggle to keep pace with their more agile, modern counterparts. 

Join us as we share software release strategies that our customers in highly regulated industries are employing to efficiently manage their own software release processes. Learn how two enterprise financial institutions are deriving benefits and positive business outcomes by employing automation and standardization across their DevOps processes. 

Get insights into how standardization can lead to resource optimization, easier troubleshooting, economies of scale, and common metrics—all leading to increased velocity and faster delivery of compliant and secure software. Additionally, we'll offer a demo of our release governance templates that these customers are using today, showing you firsthand how these templates can be integrated into your organization's processes. 

Audience Takeaways:
-Real-life examples of how top Digital.ai customers in highly regulated industries of various levels of maturity are adopting a standardized approach to their release process. 
-Insight into how to use standardized approach for cloud migration and enhance developer experience through workflows. 
-Practical insights into the benefits these customers have gained, including resource optimization, simplified troubleshooting, and establishing common metrics. 
-The webinar will equip attendees with an actionable asset—a questionnaire that can be used within their businesses.

App Release Automation & Developer Efficiency in Hybrid Cloud Environments

Remember the time your release caused a major failure? That moment when you were trying to figure out what happened and fix it as soon as possible? It’s one of those situations you want to prevent! And it just gets more complex as you need to deploy to multiple environments like cloud, on-prem, VMs and containers.

The fact is that enterprises have yet to master the art of transparency throughout their DevOps pipeline to gain efficiency, reduce failure and recover faster.

Join our webinar, where Charitra Agrawal, Director of Product Management and John Kantirakis, Sr. Solution Engineer, will show you how to predict the unpredictable! We’ll help equip you with AI-powered predictive data that empowers you for timely deliveries and fast risk detection. It’s time to get smarter and reduce the headaches and make your DevOps “continuous.”

In this webinar you will learn how to:
* Prevent release delays by proactively understanding the release dependencies and their risks
* Predict the probability of change failure with the change credit score and give a fast pass to low-risk changes
* Remediate problems faster with data that correlates application releases with incidents and production events

Continuous Delivery on Multi-Cloud: Predicting the Unpredictable

“Complexity and Change Fatigue" – these are the new curveballs leaders need to catch. 

Dive into The State of DevOps 2023 Insight Report! We've got some eye-opening tidbits about burnout and its ripple effects on team performance and delivery.  

Join us for a candid panel conversation. The report's writers, together with experts in DevOps and AI, will dive into strategies to move a culture that enhances team environments, creates an innovative spirit, and improves developer experience. 

• How to deal with the effects of "complexity and change fatigue"  
• What does a “happy developer’s team” mean? 
• How to keep the team energy up and burnout down

Navigating Complexity and Change Fatigue: Strategies from the DevOps 2023 Report

Application Developers are increasing taking the “DevSecOps” ethos to heart. They are realizing that security is not just something that gets bolted onto apps or around networks. Instead, security needs to be built into the applications that they create. While many have turned to SAST solutions to identify vulnerabilities such as Log4Shell in Log4J, others rightfully wonder how to protect the code that they write themselves, code that – by definition – contains working examples of how to penetrate the security perimeter that their InfoSec colleagues have put in place.

This webinar shows:

* How threat actors reverse engineer applications
* How a “Protection Blueprint” secures applications
* What unobfuscated and disassembled machine code looks like to a threat actor
* How obfuscated machine code makes the threat actor’s job more difficult
* What anti-tamper measures do to prevent reverse engineering of applications

How to Build a Blueprint for Secure Software

Application Hardening: Behind the Secrets to a Successful DevSecOps Practice

Your applications are once again the top cause of external breaches, indicates Forrester Research in their State of Application Security report. Why is this? For one, today’s bevy of mobile, desktop, and web apps live outside the traditional security perimeter.
 
So, how can you take app security to the next level? Hear straight from our security experts: Mike Woodard, VP of Product Management for Application Security, and Daniel Shugrue, Senior Product Marketing Manager at Digital.ai to find out.
 
Join Daniel and Mike for an interactive session wherein they will demonstrate how to bolster your company’s app security and implement threat monitoring. Don’t miss the pair’s expert guidance and these additional agenda items:

-Benefits of Obfuscation/Anti-Tamper/RASP (Runtime App Self-Protection)
-Best practices in Guard Implementation
-An in-depth threat monitoring demonstration using Digital.ai’s App Aware

And much more.

How to Implement Threat Monitoring for Application Security

Process Intelligence unlocks the potential of AI and automation in ITSM

Leveraging AI in DevOps and IT Service Management

Accelerating Service Management Automation via Next Gen AI-Assisted Operations

Gain 360° Visibility for Modern App Performance: Deliver an Amazing UX

Next Gen DevSecOps: The Criticality of Software Supply Chain Security in SDLC

Managing Networking and Connectivity

AI Security in ITSM: AI Powered Systems & Closing Gaps in Vulnerabilities

Whenever your organization creates and delivers mobile applications to either employees or customers, they are essentially also delivering a blueprint for bad actors to access your organization’s sensitive data.

As an application owner or product manager, you most likely are aware of the concept of DevSecOps and may have already implemented some best practices to build security into the applications you ship. At the same time, you might be wondering if you are devoting too much—or not enough—time to build security in your CI/CD life cycle, and you may not know which practices are actually the “best” practices.

This webinar describes the existing threat and security landscape and explores how you can take advantage of the latest DevSecOps trends to build security into your mobile applications directly, quickly and easily.

DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?

SecOps

Security

DevOps

Cyber Attacks

Enterprise Applications

Developers

Security Awareness

DevSecOps

Mobile Applications

Application Security

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

DevSecOps trends and the CI/CD lifecycle: Which practices are best practices?

Presented by

About this talk

More from this channel