by Gene Kim on
@DevOpsDaysPDX: RT @jaydestro: Time for @azureadvocates joy with @sigje @DevOpsDaysPDX #devopsdays - “Prioritizing Trust While Creating Applications” https://t.co/ZI0eyVCn89
@sigje: "I'm working on a new book called 'Modern System Administration'" (crowd cheers)
@dparzych: @sigje Trust can't be bought, it is earned. It is the foundation of our success. It cant be lost quicker than it is earned. @sigje #devopsdays
@dparzych: We build great projects when we collaborate and provide psychological safety. @sigje #devopsdays
@sigje "This is a talk about information security; the first considerations are architecture and features; the last is often security; they are on opposite ends" (this is a talk on trust)
@randomfrequency: A lot of OS containers on docker hub aren’t tested for vulnerabilities- the source of the image can also be suspect.
Ensure your CI/CD pipelines have risk analysis - @Grafeasio is one example of a project #devopsdays
- @dparzych: @sigje Security and reliability go hand in hand and are influenced by early architecture decisions. @sigje #devopsdays
- Ha! Always a mind-blowing experience. Or QA mindset! I've always been blown away by their nefarious injection vectors. :) @sigje "Pair program with someone who has a security mindset"
- Nice. @sigje: "Define a Minimum Viable (Security) Response Plan": h/t @jhand
- @sigje: "Security is not just for security people; they are for the entire team"