Survey Now Open:
2021 SANS Rethinking the Sec in DevSecOps: Security as Code
SANS is now seeking survey takers to participate in this year’s 2021 SANS DevSecsOps Survey, written by SANS Analyst Jim Bird and SANS DevSecOps expert Eric Johnson. This survey will close on April 6th, 2021.
Take the survey: https://survey.sans.org/jfe/form/SV_bxEgYPvAic5asU6
About the Survey
As IT workloads transition to the cloud, there’s a shift in how organizations develop and deliver systems—and how security must be practiced. Deploying and running production systems has become abstracted from the underlying hardware and network.
Today, the focus for both operations and security professionals is rapidly becoming centered on API calls to services, and the need to understand software development challenges in order to address information security. In short, the future of security is security as code.
This SANS survey will explore what this shift means for the modern enterprise and its security program. How will this shift affect strategic priorities, staff training and the needed investments in technology and tooling? Additionally, the survey will explore how security professionals must adapt to this new world.
Key questions will include:
- What must they understand about software development in order to meet the demand of high-velocity delivery?
- What are the necessary skills for architecting secure software as it is being written—and catching security vulnerabilities before production?
- What is the impact of different cloud architectures and platforms on this effort, including risks, strengths and weaknesses?
Register for the Survey Results Webcast
Jim Bird and Eric Johnson will explore the results of this survey in a live SANS Webcast on Monday, June 21st at 1 PM ET.
Register for webcast: https://www.sans.org/webcasts/2021-survey-rethinking-sec-devsecops-security-code-118235
They will also be holding a panel discussion with invited sponsored speakers to identify trends and key themes developed during this survey.
Register for panel discussion webcast: https://www.sans.org/webcasts/2021-survey-rethinking-sec-devsecops-security-code-panel-discussion-118240
Enter to win a $250 Amazon Gift Card
At the end of the survey, you will have the opportunity to enter a contest for a $250 Amazon gift card by providing your contact information. Providing your contact information is completely optional, and that information will not be shared outside the SANS Analyst Program.
About the Survey Authors
Eric Johnson
Eric is a Co-founder and Principal Security Engineer at Puma Security and a Senior Instructor with the SANS Institute. His experience includes cloud security assessments, cloud infrastructure automation, static source code analysis, web and mobile application penetration testing, secure development lifecycle consulting, and secure code review assessments. Eric is the lead author and an instructor for SEC540: Cloud Security and DevOps Automation, a co-author and instructor for both the brand new SEC510: Public Cloud Security: AWS, Azure, and GCP, and the upcoming SEC584: Cloud Native Security: Defending Containers & Kubernetes. Additionally, Eric is a SANS Security Awareness Developer Training Advisory Board Member and SANS Analyst for Application Security and DevSecOps Surveys. Read Eric's full profile here.
