DevSecCon Germany has teamed up with the DevOps Stuttgart community to bring you this great session
**PLEASE register on the DevOps Stuttgart community page**
In this edition of the DevOps Stuttgart Meetup, Mathias Conradt will talk about application and cloud security.
Abstract
How can developers secure their (cloud-native) applications while maintaining a good development momentum? Obviously you want to make sure that you won’t get compromised when launching your application, but security also shouldn’t get in the way of innovation. What do terms like DevSecOps, “Shift-Left”, CVE and CWE mean, and how do you actually test applications for security vulnerabilities practically – and even more importantly – fix them? Hint: static code analysis (SAST), software composition analysis (SCA), dynamic application security testing (DAST) are some valid approaches. What are these OWASP Top10 that everybody is talking about? This talk addresses software developers who always wanted to learn about application and cloud security in a nutshell but were always too busy writing business logic.