-
DevSecOps Melbourne
-
08:10
Register; grab a coffee. Mix, mingle and say hello to peers old and new.
-
08:50
Welcome from Corinium and the Chairperson
-
09:00
Fireside Chat: Setting the Scene – DevSecOps as the Key Enabler of Digital Transformation
Ashwin Pal - Partner - RSM Australia
- Exploring how IT delivery is evolving
- Enabling speed, quality & security with DevOps
- Strategies to embed security into your digital delivery journey
- Exploring effective ways of designing your DevSecOps roadmap
Ashwin Pal, Partner, RSM Australia
Branden Dunbar, Software Engineer, Product Security, Pepperstone
-
09:25
Supercharge Efficiency and Security through Interface Driven Developer Experience
Sharing valuable insights into strategies and criteria for identifying optimal interfaces for our automated tools and platforms. Join this session to uncover the strategy that not only optimises the development process for efficiency and user-friendliness but also ensures a high level of security.
- Highlighting the importance of Developer Experience (DX) in software security.
- Integrating toolchains to improve the Developer Experience across Paving the Road to Delivery, Platform Engineering, and the Golden Path.
- Aligning Developer Experience (DX) with user-centric design and interfaces, mirroring User Experience (UX) principles.
-
09:50
Keynote Presentation reserved for Amazon Web Services
Adrian De Luca - Director of Cloud Acceleration, Asia Pacific - Amazon Web Services
-
10:15
NETWORKING BREAK
-
10:45
DFIR in the Cloud: War Stories
This presentation featuring a few case studies covers some of the most prolific cloud-based incidents, both from an attack and defence perspective. The accounts of these incidents are further augmented by personal experiences. We’ll also cover some of the pitfalls for incident responders when it comes to cloud DFIR. Relevant security knowledge scope:
- Digital forensics and incident response
- Cloud service providers
- Threat hunting
-
11:10
Roadmap for Success - Getting your DevSecOps Maturity Model Right
Samrat Seal - Portfolio Product Owner - Telstra
- What security measures can be applied when using DevOps strategies?
- What approaches can be employed to prioritise these security measures?
- How can you and your team make effective assessments?
- The tools are there for a while – what are the cultural challenges of advancing your maturity model and how to address them?
-
11:35
How to Empower Developers to Elevate Security Maturity in Your Organisation?
During this session, we’ll explore how security teams can scale by enabling developers to create secure applications, including the use of modern cloud technologies that are used to deploy and run application workloads.
-
12:00
Panel Discussion: Transforming Mindsets and Practices to Cultivate a DevSecOps Culture
This panel discuss how to foster a culture where DevSecOps isn't just a buzzword, but a practical reality that enhances both speed and security in your software development journey. We will delve into key elements for building a successful DevSecOps culture for your business including:
- Moving away from a siloed approach and breaking down the “us-versus-them” attitude
- Shifting the mindset that security slows down development and needs to be built in at the end
- Successful ways to incorporate security into development from the get-to
- Highlighting the significance of security architecture in establishing a secure environment for software development
Panellists:
Kevin Cheong, Devops & IoT, Manager, South East Water
Nimisha Balyan, Capability Lead, Telstra
Rob Wiggan, Cyber Security Advisor, WTW
Kasvi Luthra, Product Security Engineer, Safety Culture
Sandeep Godbolé, Security Partner, ANZ
Andrew Cunningham, Application Development Team Lead, Australian Red Cross Lifeblood
-
12:50
Lunch
-
14:00
Panel Discussion: Mastering DevSecOps Pipeline - Accelerating Continuous Delivery while Improving Software Assets’ Security
This panel explores how to expedite continuous delivery while simultaneously enhancing the security of your software assets. Discover actionable insights for striking the right balance between speed and security in your software development journey. Key discussion points include:
- Overview of common risk factors and exposures
- What role does DevOps culture play in security?
- Strategies to establish credential controls
- Software supply chain risks
- Vulnerability management
Panellists:
Kasvi Luthra, Product Security Engineer, Safety Culture
Samrat Seal, Portfolio Product Owner, Telstra
-
14:40
Future Proofing against Cyberwar – DevSecOps, Cultural Change and Strategic Readiness
Delve into the imminent reality of cyberwar—its inevitability and our preparedness fall short. Discover the pivotal role of DevSecOps as our cornerstone in defence, reminiscent of the industrial necessity of production lines in WW2. Beyond this crucial framework, understanding the critical need for cultural shifts at the highest levels. Uncover why automation in cyber is non-negotiable and how cultural evolution holds as the key to overcoming the challenges of cyberwar.
-
15:05
Building a DevSecOps Department from the Ground Up
John Burgess - Manager, Cyber Security & IT Programs - Victoria University
During this session, we’ll explore different journeys in building an application security program from the ground-up. We’ll explore the key challenges, dos and don’ts, ideas and solutions in an inspiring and engaging conversation.
-
15:30
NETWORKING BREAK
-
16:05
Advancing DevSecOps with the help of AI
Sandeep Godbolé - Security Partner - ANZ
-
16:30
DevSecOps, Cultural Change and Strategic Readiness
Andrew Cunningham - Application Development Team Lead - Australian Red Cross Lifeblood
-
16:55
Wrap-up Panel: What’s Next
Join our interactive wrap-up discussion to share your key take-aways from DevSecOps Melbourne and hear how your peers will be address their key learnings moving forward.
-
17:15
End of DevSecOps Melbourne 2023
Not Found