Episode 154: Integration of Incident Response into DevSecOps

In episode 154 of Cybersecurity Where You Are, Sean Atkinson discusses incident response in DevSecOps, exploring challenges and solutions in modern software development. He emphasizes the importance of integrating security into development processes and speaks about common issues like alert fatigue and software supply chain vulnerabilities. Here are some highlights from our episode:

• 01:32. Common challenges with modern software development
• 03:54. High-speed and continuous deployment
• 07:08. Incident correlation with cloud deployment strategies
• 10:00. Software supply chain vulnerabilities
• 12:45. Alert fatigue and false positives
• 14:30. Testing and automation as enablers of real-time anomaly detection
• 17:40. The responsibility of incident responders to understand what they see
• 18:58. Automated control and a projectized approach to implementing zero trust
• 21:26. Oversight and governance with artificial intelligence and machine learning
• 23:24. Continuous improvement and early detection
• 28:08. Continuous monitoring and logging, automation, and incident response drills
• 30:03. Moving down a path of helping incident responders become culturally aware

Resources

• Cloud Security and the Shared Responsibility Model
• CIS Software Supply Chain Security Guide
• An Introduction to Artificial Intelligence
• Defense-in-Depth: A Necessary Approach to Cloud Security
• Episode 63: Building Capability and Integration with SBOMs
• Episode 44: A Zero Trust Framework Knows No End
• Leveraging Generative Artificial Intelligence for Tabletop Exercise Development

If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing podcast@cisecurity.org.