Security Automation in your Continuous Integration Pipeline

DerbyCon 6.0 - Recharge

Presented by: Jimmy Byrd
Date: Saturday September 24, 2016
Time: 17:00 - 17:25
Location: Pimlico
Track: Stable Talks

Developers use unit tests and acceptances tests in continuous integration (CI) to find bugs early and often in a repeatable way. Security is an important part of any software development life cycle. So why not add security analysis tools to this pipeline? This talk will cover adding and using OWASP/pipeline, a framework made for running security analysis tools in CI.

Jimmy Byrd

Jimmy Byrd is currently a Security Developer at Binary Defense Systems. He has worked as a developer for 8 years in a collection of fields such as manufacturing, education, medical, and SCADA. After being the victim of a SQL Injection attack in 2011, Jimmy started learning more about security as a software developer and how it can be applied to his field to stop attacks before they even happen.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats