S02ep03 Devsecops For Teams Building On Steroids Akash Mahajan

TOPIC: DevSecOps for teams building on Steroids

Developers have already adopted public cloud in all tech enabled companies and industry verticals. Security teams are mostly for after the fact testing, signaling that compliance is in place or even as a sales aid when selling to large enterprises.

If Continuous Delivery is the goal (as that gets the business money) then the integration and deployment pipelines (CI/CD) are the assembly lines. Far too often under the misguided notions of shift left, security teams come and slow things down by adding security steps to such pipelines and are surprised when no one likes this.

This is what he was able to solve for Byjus enterprise business team and they presented this at DevOps Enterprise Summit 2021 Europe as well.

Guest: Akash Mahajan, Founder & CEO Kloudle, Appsecco
Before founding Kloudle, Akash started Appsecco in 2015. At Appsecco, they did security testing of products hosted in the public cloud. They tested 100s of applications. But instead of app bugs, they found most of the time cloud infra was misconfigured.

Humans make mistakes. So far most developers are human too. Project after project they hacked into customer's apps due to cloud misconfigurations. Therefore, they built Kloudle.
Kloudle automates cloud security to eliminate human errors in setting up and using cloud infrastructure. It answers 3 things. What's running, what's wrong, how to fix it. Automatically in a loop. A CSPM built for devs.

Follow us on LinkedIn: @breakpoint-security-podcast
linkedin.com/company/breakpoint-security-podcast
br3akp0int.buzzsprout.com/

Connect with me on -
Twitter: @NeeluTripathy
LinkedIn: @neelutripathy

Timestamps:

00:00 Introduction
01:53 Topic Introduction
02:59 Detection through checkpoints
06:03 Ensuring security ,while dealing with high deployment frequencies
12:54 Tackling secret detection and management
24:29 Operational challenges when scaling
32:46 Key metrics to measure ESP at security level
43:31 Where can small & medium businesses start their security
50:41 Thank you note

  • #S02EP03 DevSecOps for teams building on Steroids | Akash Mahajan ( Download)
  • #S02EP03 DevSecOps for teams building on steroids | Teaser ( Download)

Author

Ariyani

Como educador, estou profundamente engajado no desenvolvimento dos estudantes em ambiente escolar, adotando métodos pedagógicos que valorizam conexões genuínas e são movidos por inovação e fervor. É minha vocação guiar os alunos na jornada de se tornarem uma geração notável, empregando estratégias de ensino amplamente aclamadas por prestigiadas instituições acadêmicas ao redor do globo - events.zulekhahospitals.com