From the course: DevSecOps: Tips for Success
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Learn from safety experts
- [Instructor] Safety and security have always had some connection, but we often think of them as separate disciplines. This is an oversimplification, but cyber security has adopted many of the practices, and really the mindset of physical security. You can think of examples of this like DMZs, firewalls; we talked about weaponized payloads. Those approaches aren't wrong, but they are an incomplete picture. Our systems are often left exposed or vulnerable due to errors introduced in software development or through configuration drift over time. Some studies show that over 50% of breaches are due to issues that are more or less just due to ineffective safety practices. Let's discuss what kind of systems we're even talking about. There are two types of systems we can think about here: simple systems and complex systems. Simple systems are linear in nature. A affects B, B affects C, and so on. They are easy to predict and all…
Contents
-
-
-
-
Be a maker for DevSecOps4m 37s
-
(Locked)
Use developer tactics for security5m 9s
-
(Locked)
Focus on experiments that learn3m 31s
-
(Locked)
Apply security automation for DevSecOps joy4m 46s
-
(Locked)
Learn from safety experts4m 22s
-
(Locked)
Add in chaos for better security results4m 31s
-
(Locked)
Build a sharing culture for security4m 9s
-
(Locked)
Bring auditors to the DevSecOps party3m 24s
-
(Locked)
Find a rugged path for software4m 13s
-
(Locked)
The MEASURE for DevSecOps4m 47s
-
-