Convergence of Security layers - Let the strategy focus on the real deal

Do we need to update our security strategies and speech? Most if the ordinary/traditional security talks strategies still approaching normal layers and missing the technology convergence and fast response needed by business

The objective of the session is helping CISO for updating their security strategies and approaching DevSecOps workflows or at least find a common ground for speaking with new IT/Development in the era of technology convergence and satisfying the business need for winning the market by fast Integrations and Developments (CI/CD).

Accordingly session will simplifying security thinking for approaching one of the DevOps components (Containers). Choosing the talk to start from Container security point view to ensure audience at least got out with proper foundation for speaking with IT/Dev team, Also choosing the core components to link the whole story to the audience from DevOps to CI/CD to Zero Trust, which are common words used these days as part of the digital transformation and high resiliency. the session will cover the containerisations concept and quick overview of NIST SP800-190 and surrounding container management tools, then will move to the view of Business to the security after the CI/CD and the impact of this on the security in a fast-base environment, and since losing the business is big impact we need to mention the remaining risks that are impacting the security specially with the convergence of IT/Dev layers which may need to converge the security layers as well and accordingly the whole mindset of think in security risks, security testing and compliance.