Build crucial cyber security skills through interactive training during SANS Cyber Security Mountain 2021. Save $150 thru 6/30.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

A SANS 2021 Survey: Rethinking the Sec in DevSecOps: Security as Code

  • Monday, June 21, 2021 at 1:00 PM EDT (2021-06-21 17:00:00 UTC)
  • Jim Bird, Eric Johnson


  • Accurics
  • Aqua Security Inc.
  • ForAllSecure
  • Micro Focus
  • Sysdig
  • Veracode

You can now attend the webcast using your mobile device!



As IT workloads transition to the cloud, there's a shift in how organizations develop and deliver systems - and how security must be practiced. This year's SANS survey explores what this shift means for the modern enterprise and its security program. On this webcast, survey authors Jim Bird and Eric Johnson will explore how security professionals must adapt to this new world. Key questions from the survey include:

  • What must they understand about software development in order to meet the demand of high- velocity delivery?
  • What are the necessary skills for architecting secure software as it is being written - and catching security vulnerabilities before production?
  • What is the impact of different cloud architectures and platforms on this effort, including risks, strengths and weaknesses?
  • Register today to be among the first to receive the associated whitepaper written by SANS analyst and course author Jim Bird and SANS instructor and course author Eric Johnson.

Click here to register for the associated panel discussion webcast to be held at 1 PM ET on Monday, June 28, 2021, where Eric and Jim will moderate a conversation with survey sponsor representatives.

Speaker Bios

Jim Bird

Jim Bird, SANS analyst and co-author of SEC540 Cloud Security & DevOps Automation, is an active contributor to the Open Web Application Security Project (OWASP), and an author of books on Agile Security and DevSecOps. He has worked at major technology organizations and financial institutions around the world in software development, operations and IT security.

Eric Johnson

Eric is a Co-founder and Principal Security Engineer at Puma Security and a Senior Instructor with the SANS Institute. His experience includes cloud security assessments, cloud infrastructure automation, static source code analysis, web and mobile application penetration testing, secure development lifecycle consulting, and secure code review assessments. Eric is the lead author and an instructor for SEC540: Cloud Security and DevOps Automation, a co-author and instructor for both the brand new SEC510: Public Cloud Security: AWS, Azure, and GCP, and the upcoming SEC584: Cloud Native Security: Defending Containers & Kubernetes. Additionally, Eric is a SANS Security Awareness Developer Training Advisory Board Member and SANS Analyst for Application Security and DevSecOps Surveys. Read more about Eric here.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.