Dear Colleagues,
The Information Security Team at KAUST IT is delighted to offer an application security workshop, demonstrating ways to secure your product development by integrating security in the early stages of code.
With the SecDevOps approach, you move security to the forefront of the development process. This strategy involves outlining best practices early on and embedding secure code into the development life cycle. Simply put, switching to SecDevOps streamlines security and helps DevOps engineers code with greater speed and security.
Why Is SecDevOps Important?
- Tighter security integration
- Fewer security issues
- Faster production
- Happier customers
- Greater accountability
When is the event?
Monday, November 7, 2022
2:00 p.m. to 5:00 p.m.
Auditorium Room 215, between Building 2 & 3
About the Developer Workshop
- Why application security testing matters?
- Veracode Approach
- Application testing types
- Integration of Veracode in SDLC process:
– Developer IDE e.g. IntelliJ / Visual Studio Code – Getting Feedback in Seconds (Pre-Commit)
– CICD-System – GitLab as example and reference implementations
– Controlling the build process – Fail or Not fail the build on security findings?
– Scan Types: SAST, SCA and DAST
- Auto-remediation of Security Issues
- Live Demo
- Roadmap SAST, DAST and SCA
- Optimization of Veracode usage at KAUST
This workshop is ideal for developers (web, mobile and application) and anyone who is interested in learning more.
KAUST IT
https://it.kaust.edu.sa
We make IT happen!