SecDevOps: Adding security to your CI/CD workflow

We all know we should write secure software, and some of us are required to provide evidence of that security when delivering services in industries that have compliance requirements (FedRAMP, PCI, etc.).

In this session we will discuss 1.) how to add security testing to your CI/CD workflow, 2.) how to secure your open source supply chain, and 3.) other compliance requirements for your developing for high compliance environments such as FedRAMP.