BSidesSF 2018 has ended
Back To Schedule
Monday, April 16 • 11:40am - 12:10pm
The SecDevOpronomicon - Arcane Secrets for Scaling your Company’s Security

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
In Victorian San Francisco, we provision fleets of servers with Chef or Puppet and push new code to production dozens of times a day, our laptops illuminated by candle light and backlit Macbook keyboards. You twirl your LED monocle and focus your attention once more on your most pressing challenge: how can you scale your company’s security efforts given the rapid pace of development with a security team outnumbered by developers 100 to 1 or more?

Fear not, for I have studied countless blog posts, white papers, and conference talks the world over to aggregate and summarize their content. Further, I’ve met with security practitioners at companies ranging from startups to large enterprises to discuss their arcane practices in detail - what they’ve tried, what works, and what didn’t.

Join us for an unfiltered, un-hands washed discussion of the current state of the art in SecDevOps, from publicly discussed content to pro-tips from in-person discussions with security engineers at numerous Bay Area companies. Topics will include: high value engineering efforts to solve classes of bugs, high-signal ways to use custom static and dynamic analyses, hooking into the CI/CD pipeline to find potential dangers quickly and reduce risk, and much more.


Clint Gibler

Senior Security Consultant, NCC Group
Clint Gibler is a research director at NCC Group, a global information assurance specialist providing organizations with security consulting services. He’s helped companies implement security automation and DevSecOps best practices as well as performed penetration tests for companies... Read More →

Monday April 16, 2018 11:40am - 12:10pm PDT