ISSA Sacramento Chapter Meeting - 11:30 AM Friday, 19 August 2022

Speaker: Sherry Ger, Solutions Architect, Snyk Limited —
Topic: Cloud Native Application Security: Embracing Developer First Security for the Cloud Era
Synopsis: Cloud native applications do more than just run on a different platform. The entire scope of these applications is different, including the methodologies and skills used to build them. Security practices for these applications need a transformation of equal magnitude. In this session, you’ll learn how to adapt your practices to this new organizational reality by adopting a developer-first cloud native application security (CNAS) approach. I’ll explain this market transition and review the organizational changes required to succeed, including alterations to security practices and tooling. I’ll share concrete examples to help clarify concepts and act as role models to consider.

By the end of this session, you’ll understand why and how to embrace a CNAS approach.

• Initiate dev-first security by equipping developers with the mandate and tools to secure what they build during the development process
• Expand the scope of application security for cloud native apps to include controls that IT security previously handled
• Learn how adopting CNAS requires significant changes to the way you secure applications and infrastructure
• Adapt your organization to a dev-first CNAS approach by rethinking your security organizational structure, tooling, and priorities

Bio: Sherry is a staff solution engineer at Snyk with experience across software development, devOps, and security. When not nerding out on data stores, search engines, and security and infrastructure monitoring, Sherry is teeing off under the sun.

This will be a hybrid meeting (both in-person and on-line). You may attend remotely via Zoom or attend in person at Capsity, 3808 Broadway, Sacramento CA (Google Maps and Directions). Either way, please register for the meeting below. Select No Meal if you are attending remotely, or Normal Meal or Vegetarian if you are attending in person. All registered members and guests will receive the Zoom meeting link via email, by the morning of the meeting.

You don't have to be a member of ISSA to attend our meetings (but we encourage you to join us!). Please share information about this meeting with your friends and colleagues who have an interest in information security.