It’s no secret that enterprises are scrambling to get a handle on data breaches, source code vulnerabilities and software supply chain issues before they wreak havoc on software delivery. Traditional security implementations revolve around implementing security postures at the perimeter rather than the application layer. But recent breaches such as Log4j2, for example, proved that approach was inadequate.

How can organizations secure applications against exploitation? That’s where application security comes in. Application security refers to security measures at the application level that aim to prevent data or an application's code from being stolen or hijacked. AppSec encompasses the security considerations that occur during application development and design and also involves systems and approaches that protect apps following deployment.

In this talk, we’ll be covering how to identify, protect, detect and respond to application security issues across your organization’s workflows by instrumenting the Contrast Security platform via DevSecOps using RedHat OpenShift Pipelines based on Tekton.

The following topics will be covered in this talk:

• DevSecOps integration via CI/CD pipelines within the RedHat OpenShift ecosystem
• Scaling DevSecOps throughout the enterprise using automation
• Making security part of the software delivery value stream