Loading…
AppSec USA 2016 has ended
Back To Schedule
Friday, October 14 • 1:00pm - 2:00pm
DevOops: Redux

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
In a follow-up to the duo’s offensive focused talk “DevOops, How I hacked you”, they discuss defensive countermeasures and real experiences in preventing attacks that target flaws in your DevOps environments. In this talk, Chris and Ken describe common ways in which DevOps environments fall prey to malicious actors with a focus on preventative steps. The team will present their recommended approach to hardening for teams using AWS, Continuous Integration, GitHub, and common DevOps tools and processes. More specifically, the following items will be demonstrated:

-AWS Hardening
-AWS Monitoring
-AWS Disaster Recovery
-GitHub Monitoring
-OPINT
-Software Development Practices/Processes
-Secure use of Jenkins/Hudson
-Developer laptop hardening (OS X)
Speakers
avatar for Chris Gates

Chris Gates

Sr. Offensive Security Manager, Robinhood
Chris Gates is a graduate of the United States Military Academy and Army Veteran. He is a well-known Information Security professional and has spoken at over 50 security conferences around the world. He is also a spiritual fitness coach and energy healer.“Hey I’m Chris. I’m... Read More →
avatar for Ken Johnson

Ken Johnson

CTO, nVisium
Ken Johnson, CTO of nVisium, has been hacking web applications professionally for 8 years. Ken is both a breaker and builder and currently leads the nVisium product team. Previously, Ken has spoken at DerbyCon, AppSec USA, RSA, AppSec DC, AppSec California, DevOpsDays DC, LASCON... Read More →

Friday October 14, 2016 1:00pm - 2:00pm EDT
Grand Central Renaissance Washington, DC Downtown Hotel 999 9th St NW, Washington, DC 20001
  Tracks, DevOps

Attendees (34)