This presentation will provide the audience with a case study of how real world organizations using the public cloud are approaching application security. Netflix, one of the largest AWS and public cloud users in the world, will serve as the subject of the case study.
I will cover a variety of topics of interest to application security personnel, including:
-Automating and integrating security into CI/CD environments
-Large scale vulnerability management
-Continuous security testing and monitoring, including Netflix's Security Monkey framework
-Cultural integration of security in DevOps/agile organizations