Loading…
NOTE: The event will be held in Central Daylight Time (CDT), UTC -5.

View More Details for Open Source Summit + Embedded Linux Conference North America 2020
Registration Information.
Back To Schedule
Wednesday, July 1 • 3:05pm - 3:55pm
Fueling Open Source Adoption with devsecops - Neetu Jain, USAA

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Open source is a flourishing ecosystem which for many companies is opening up the doors to agility, innovation and strategic competitive advantages driven by lower total cost of ownership and faster time to market.

With great power comes great responsibilities: Security, legal and operational risks with open source which can cost companies their hard-earned business as well as reputation.

With increasing reliance on open source we need to understand the risks involved with those open source components and ensure that its easy for dev, security and legal to collaborate together to ensure that opensource adoption increase is safe and secure. Good news is that devsecops practices can help in mitgating those risks for ex:-

1) Continuous scanning for vulnerabilities can go a long way to mitigate these risks
2) Security testing early in the SDLC (shift left) and with continuous integration in the pipeline software component analysis can be accomplished systematically
3) Vulnerability disclosure programs should be in place to ensure
4) Bill of material for every application can track vulnerable dependencies
5) License and vulnerability checks can be enforces on download

Speakers
avatar for Neetu Jain

Neetu Jain

Lead Product Manager, USAA
Neetu Jain is a lead product manager at USAA, where she leads products that are paving the path to digital transformation for the company by bringing in a culture of devsecops and continuous learning. Prior to that she has been a offering manager at IBM leading the cloud network security... Read More →


Wednesday July 1, 2020 3:05pm - 3:55pm CDT
Linux Systems Theater