[ad_1]
Shift-Left Safety is a scorching matter amongst software program builders these days. The precept of “shift-left” is easy (assume “left” alongside a timeline). It refers back to the quickly rising development of safety checks and controls shifting to earlier within the code growth pipeline. A few examples could be:
- including safety into the code writing course of (for instance by including safety plugins to an IDE)
- the code commit course of (for instance through the use of automated checks within the pipeline)
Cisco Stay is a good alternative to study
These of you aware of Cisco Stay and the DevNet Zone understand it’s an incredible place to attach with friends, discover pathways by way of challenges, and study how-to _ (you fill within the clean)_ . This yr you may attend classes in-person or nearly. And, we now have fairly a variety of classes on shift-left safety so that you can contemplate. Listed under are 2 DevNet classroom classes and 6 hands-on workshops. The workshops all make use of our new studying lab platform, providing a easy built-in expertise, with out the necessity to set up every kind of necessities in your gadget.
Cisco Stay classes specializing in shift-left safety
Click on on the session title under to study extra and to register
AppSec for a k8s and Different Cloud Native Worlds – DEVNET-3330
I’ll current this session along with Randy Birdsall, Sr. Director of Product Administration with Cisco AppDynamics. We are going to cowl quite a lot of floor on this session and have many demos so that you can see. We are going to clarify the way to deploy a cloud-native microservices utility in AWS, and add safety in several steps of the event pipeline. We are going to add safety earlier than deployment, in addition to safety that may defend the manufacturing atmosphere of the dwell utility. You don’t need to miss this one if you wish to get a superb overview of what’s doable with Cisco to shift your safety left! Be part of me on Thursday, 12:00 PM within the DevNet Theater.
Software program Provide Chain Assaults and How one can Safe Your DevOps Pipeline – DEVNET-2470
It is a must-see discuss by an exterior speaker from Cycode, Kyle Winters. Kyle has spoken at Cisco Stay earlier than and is a Distinguished Speaker. His session is about assaults on the supply-chain. As DevOps strikes elements into their Provide Chain Administration (SCM), new safety challenges emerge. In the present day, an incident in one of many DevOps levels can now compromise the complete pipeline. Attackers now not need to straight exploit manufacturing apps to begin an assault as a result of trendy SCM include data to achieve entry manufacturing methods. Try Kyle’s session on Tuesday at 4:00 PM.
DevNet Zone Workshops:
Actual-world API Assaults, and How one can Shield Your Cloud-native Apps – DEVWKS-2919
Brian Sak, Technical Options Architect at Cisco, will provide a really cool workshop on real-world API assaults. APIs are actually a quite common assault vector into these apps and visibility into their use (and misuse) is important. This DevNet workshop offers you hands-on monitoring API calls inside a Kubernetes-deployed, cloud-native utility utilizing APIClarity. Wednesday at 11:00 AM.
Introduction to APIClarity – A Wireshark for APIs – DEVWKS-2285
Staying on the APIClarity practice we now have one other superior workshop with. Not all purposes within the cloud native world have their open API specification out there – and that is very true for legacy and/or exterior purposes. Once we attempt to make the most of APIs or assess the chance of those APIs, having the open API specification is an important and required constructing block. On this workshop, Zohar Kaufman, Director Engineering, and Alexei Kravtsov, Software program Engineering Technical Chief, will introduce APIClarity — a brand new open supply device that may act as a Wireshark for APIs and, when put in in a Kubernetes atmosphere. Their session is so good, we’ll provide it twice! Tuesday at 3:00 PM and Thursday at 10:00 AM.
Automating Cyber Hygiene Operations with SecureX and Kenna Safety – DEVLIT-1355
In a rush? We bought you! Oxana Sannikova, Technical Options Architect at Cisco, will current a lightning discuss (20 minutes) about Cisco Kenna’s risk-based vulnerability administration. On this fast session we’ll reveal how Cisco SecureX orchestration and Kenna Safety may be leveraged to automate vulnerability administration. Test it out. Monday at 10:30 AM.
Safety on the Velocity of Cloud – Safety as Code – DEVWKS-2255
Is safety making your course of gradual, making issues complicated, or is it an enabler? On this session, You’ll see how one can construct safety into your CI/CD pipelines and be totally automated, built-in, and centrally managed. You’ll learn to leverage Cisco safety options like Safe Workload, Cloud Analytics, Safe Firewall Cloud Native and SecureX, to automate, orchestrate your safety throughout the board, and assembly your compliance targets. Full of demos and interactive palms on labs! Don’t miss this superior workshop by Barry Yuan, Technical Options Architect at Cisco on Tuesday at 2:00 PM
This session will present an summary of programmability instruments and methods out there for Cisco Safe Workload (previously Tetration). They are going to dive into use circumstances gathered from the shoppers we assist to automate widespread workflows reminiscent of well being checks and enforcement readiness. This workshop is introduced by Furong Gisiger and Gabriel Fontenot, each Software program Engineering Technical Leaders at Cisco Methods. Wednesday at 1:00 PM
Mitigate dangers and safe your cloud-native purposes – DEVWKS-2305
This session will give attention to how Cisco options empower DevOps and Safety groups to repeatedly defend their rising Cloud Native deployments from threats and vulnerabilities. And do it throughout photographs, containers, runtime deployments and Kubernetes infrastructure. This workshop is obtainable by Asifiqbal Pathan and Arvind Kumar, each Principal Architects at Cisco. Tuesday at 4:00 PM.
Wrap-Up
Sufficient content material to sit up for? I’m fairly certain you may fill your day fairly nicely with all of those superior Shift-Left safety classes. I’m very a lot trying ahead to this primary in-person Cisco Stay in a number of years. Please be part of me in exploring the DevNet Zone till we now have packed our brains with recent new info.
To study extra about Cisco safety options:
Be part of our day by day livestream from the DevNet Zone throughout Cisco Stay!
Keep Knowledgeable!
Join the DevNet Zone Cisco Stay E-mail Information and be the primary to learn about particular classes and surprises whether or not you’re attending in particular person or will have interaction with us on-line.
We’d love to listen to what you assume. Ask a query or go away a remark under.
And keep linked with Cisco DevNet on social!
LinkedIn | Twitter @CiscoDevNet | Fb | YouTube Channel
Share:
[ad_2]