Skip to content

Commit

Permalink
Merge pull request #3154 from OpenSecuritySummit/Alone2671-patch-56600
Browse files Browse the repository at this point in the history 
Create Hands-on-Workshop-Utilize-OWASP-DSOMM-App-to-Define-and-Delive…
  • Loading branch information
@Alone2671
Alone2671 authored Sep 15, 2024
2 parents b7aad33 + 74125a0 commit 8f1e513
Showing 1 changed file with 36 additions and 0 deletions.
36 changes: 36 additions & 0 deletions ...s-on-Workshop-Utilize-OWASP-DSOMM-App-to-Define-and-Deliver-Your Own-Program.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
---
title : "Hands-on Workshop: Utilize OWASP DSOMM App to Define and Deliver Your Own Program"
track : Governance
project : Risk and Governance
type : working-session
topics :
featured :
event : mini-summit
when_year : 2024
when_month : Oct
when_day : Wed
when_time : WS-15-16
hey_summit :
session_slack:
#status : draft
description :
banner :
organizers :
- Timo Pagel

youtube_link :
zoom_link :
---

## About this session
Discover how to elevate your DevOps security strategy with the OWASP DevSecOps Maturity Model (DSOMM). This comprehensive framework offers a structured approach to prioritizing and implementing security measures within DevOps practices.

In this workshop, Timo will introduce DSOMM and its practical application, demonstrating how to leverage DevOps strategies to enhance security. He'll showcase the DSOMM application and its features, guiding you through the process of customizing and scaling your AppSec program. Specifically, how you can customize the activities your team(s) should implement with level, title, descriptions/requirements, and evidence to deliver it to your teams including the current implementation status.
You'll learn about the ""inheritance"" concept in DSOMM activities and its time-saving benefits, including automatic mapping to frameworks like SAMM and ISO 27001. Through an interactive exercise, you'll create a small application security testing program based on DSOMM, gaining hands-on experience in prioritizing AppSec activities.

This talk offers tools and techniques for all skill levels, whether you're new to AppSec/DevSecOps or looking to refine your existing strategies.
Join us to learn how DSOMM can transform your approach to security and sharpen your skills in prioritizing AppSec/DevSecOps activities for enhancing impact.

Requirements:
- Docker
- Linux is recommended.

0 comments on commit 8f1e513

Please sign in to comment.