Sign in to confirm you’re not a bot

This helps protect our community. Learn more

Sign in

Guaranteeing Application and Azure Security with DevSecOps

Microsoft Reactor

Microsoft Reactor

114K subscribers

<__slot-el>

Subscribe

<__slot-el>

Subscribed

21

Share

Save

495 views Streamed 2 years ago

495 views • Streamed live on Aug 31, 2022

What is the session about? In this session John will how how Azure Devops can be used to automate the deployment and security checks of a website in the Azure cloud using Azure Devops. He will go through how a variety of tools are used to gain security insights into your code and deployed environment. Who is it aimed at? Developers who would like to learn more about security Why should you attend? We will explore how this relates to the pull security left philosophy from DevSecOps. After the talk you will have gained a good insight into all the tools you can use to improve the security of your deployed code base. Bio: John Staveley John Staveley is a developer focusing on web development with 20 years experience, mostly in the .Net stack. He is an organiser at Leeds Sharp, Leeds Data Science and Leeds IoT meetups and regular speaker on a variety subjects such as security, messaging and typescript across the north of England. Connect with John: Twitter:   / johnstaveley   LinkedIn:   / johnstaveley   ...more

...more

Live chat replay

See what others said about this video while it was live.

Open panel

Key moments

Code of Conduct

1:11

Why Security

4:28

Devsecops

5:03

Application Security

7:42

Azure Pipelines

9:43

Why Automate

11:47

The Devsecops Approach

13:25

Pre-Commit Stage

14:08

Ca Credential Scanner

29:56

Azure Secure Kit

31:46

Dependency Checks

35:24

Suppression File

37:26

Deployment Code

42:35

Security Acceptance Tests

47:29

Availability Monitoring

50:57

Database Vulnerability Scan

52:21

Code Reviews

54:47

Sync to video time

Description

Guaranteeing Application and Azure Security with DevSecOps

What is the session about? In this session John will how how Azure Devops can be used to automate the deployment and security checks of a website in the Azure cloud using Azure Devops. He will go through how a variety of tools are used to gain security insights into your code and deployed environment. Who is it aimed at? Developers who would like to learn more about security Why should you attend? We will explore how this relates to the pull security left philosophy from DevSecOps. After the talk you will have gained a good insight into all the tools you can use to improve the security of your deployed code base. Bio: John Staveley John Staveley is a developer focusing on web development with 20 years experience, mostly in the .Net stack. He is an organiser at Leeds Sharp, Leeds Data Science and Leeds IoT meetups and regular speaker on a variety subjects such as security, messaging and typescript across the north of England. Connect with John: Twitter:   / johnstaveley   LinkedIn:   / johnstaveley  

Key moments

View all

Transcript

Follow along using the transcript.

Show transcript

Microsoft Reactor

114K subscribers

Videos

About

Reactor on Twitter

Reactor on Facebook

Reactor on Linkedin

Transcript

Show chat replay

Azure DevOps: Zero to Hero Tutorial

DevOps on Azure

DevOps on Azure

•

310K views 2 years ago