Incorporating security earlier in the development lifecycle reduces risk and cost, and improves productivity. In this session, we explore the cross-functional relationships of development, security, and operations teams through the lens of DevSecOps to reveal insights into successful practices, and solutions. You will learn to build end-to-end CI/CD pipelines, integrate open source tools including SCA (Software Composite Analysis) and SAST (Static Application Security Testing) to perform vulnerability scanning, and aggregate findings into AWS Security Hub to remediate effectively.

Speaker: May Kyaw, Solutions Architect, AWS