Speaker: Stefania Chaplin

(She / her / hers)

Solutions Architect @GitLab

Stefania’s experience as a Solutions Architect within Cybersecurity, DevSecOps and OSS governance means she's helped countless organisations understand and implement security throughout their SDLC. As a python developer at heart, Stefania enjoys optimising and improving operational efficiency by scripting & automating processes and creating integrations. She is an active member of OWASP DevSlop, hosting their technical shows. When not at a computer, Stefania enjoys surfing, yoga and looking after all her tropical plants

Session + Live Q&A

Implementing True DevSecOps with People, Processes & Technologies

True DevSecOps requires a healthy mix of People, Process and Technology. What is the business impact of this and how can we use it to drive competitive advantage? 

First we must look internally, changing culture and breaking down silos. Then, look at the interactions, processes and technologies throughout our software development lifecycle. 

Security must shift left and be integrated throughout. This will bring benefits to security, development and the entire DevSecOps pipeline. 

Gitlab, the DevOps platform, allows collaboration, transparency and results that can drive true business value.

Date

Tuesday Apr 5 / 04:10PM BST (50 minutes)

Location

Abbey, 4th flr.

Video

Video is not available

Add to Calendar

Add to calendar

Share

Session + Live Q&A

Securing Microservices: Preventing Vulnerability Traversal

One of the advantages of microservices architecture is that teams can develop, maintain, and deploy each microservice independently. With single-responsibility, services can be scaled separately as required and doing so with a DevOps mentality substantially improves agility. 

How do we secure microservices and their deployments? Who owns what? Do we know what is in our microservices? Preventing vulnerability traversal is a must. Systems must be designed securely, and security as an afterthought does not scale. Platform engineers and SREs need to quickly identify owners and fix deployment vulnerabilities from inception to production. If log4j taught us anything, teams must have ownership, accountability and the power to make changes fast to keep their systems secure.

In this session, we’ll be looking at OWASP recommendations and Kubernetes best practices to find out more about how to secure your microservices and reduce vulnerability traversal.

Date

Wednesday Apr 6 / 01:40PM BST (50 minutes)

Location

Fleming, 3rd flr.

Track

Effective Microservices: What It Takes to Get the Most Out of This Approach

Topics

MicroservicesSecurity

Add to Calendar

Add to calendar

Share

Session + Live Q&A

Getting the Most Out of Microservices

How can you make a success of microservices? How do you know whether it is the right approach for you?

Microservices trade development complexity for operational complexity, but when is that the right trade off to make? And what are the most important things to keep in mind if you want to be successful?

Join our panellists Holly Cummins, Stefania Chaplin and Nicky Wrightson as they share what they’ve learned about building, operating and securing microservices.

Date

Wednesday Apr 6 / 02:55PM BST (50 minutes)

Location

Fleming, 3rd flr.

Track

Effective Microservices: What It Takes to Get the Most Out of This Approach

Topics

Microservices

Video

Video is not available

Slides

Slides are not available

Add to Calendar

Add to calendar

Share

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.