Scania's DevSecOps approach - Gamifying Security - auto:CODE

•Download as PPTX, PDF•

1 like•230 views

Presentation about Cloud Security at Scania 2019. At the yearly auto:CODE we.CONECT conference in Berlin. What needs have drive the Cloud movement and how to further improve agility with empowered feature teams that securely work autonomous in AWS Cloud.

Presentations & Public Speaking

Scania’s DevSecOps
Approach
– Gamifying Security in the Cloud
ANDERS LUNDSGÅRD, BERLIN – 2019-11-28

Scania Cloud Adoption – Security Team
Anders Lundsgård
Senior Engineer @ CS Delivery Engineering
Cloud Engineer/Architect @ Scania Cloud Adoption
@anderslundsgard

Disclaimer
There is no official Scania “DevSecOps manifest definition”.
DevSecOps in this presentation is only one view of
DevSecOps. Based on the presenters experience in building,
deploying and operating software in a secure way.

in the early days…
More features
quicker Stability

in the early days…
Stability
This is me today

• 3-8 people
• Requirements
• Technologies
• Quality
• Deployment
• Monitoring
• Operations
6
Autonomous Teams that fully own their services

Zero Downtime
Enables engineers to be present when their code goes live

Deploy != Release
Feature Team
Concern
Business
Decision

Remove Handovers
Avoid sub optimize in organizational silos

Deploy frequency
- Scania Connected Services
• 2015
– Agile teams
• 12 deploys per year
• 2016
– Autonomous Teams
• Continuous Delivery
• 30+ Prod deploys per day
• 2011
– Software projects
• 2-3 in parallel
• 3 deploys per year
1. Microservice Architecture
2. Challenged and improved
infra related processes
3. Trust and courage from
management
Continuous Integration
Infrastructure
changes NOT
included

Cloud Adoption
20162014
Cloud First
2019
Cloud Only
(For new initiatives)
Cloud Native

Innovation
Global Reach
Security
Cost
Speed

1000+ Engineers and 400+ AWS accounts
= Feature TeamFT DE = Delivery Engineering (Cloud Satellite)
DE
FT
FT
FT
FT
FT
FT
FT
FT
DE
FT
FT
FT
FT
FT
DE
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
FT
Multiple other departments
co-located in same building
Cloud Adoption
(~10 engineers)
Dev-teams that move to
“DevOps”-teams with no
investment tend to struggle
in their cloud journey

Greenfield AWS setup
Version Control
cloud enabled
AWS multi
account strategy
Immutable
infrastructure
In each
Feature Team!
Read Only in Prod
for human beings
NO
CLOUD
OPS

VIDEO
https://dreambroker.com/channel/td4z2vr3/ovxsnico

Cloud Security Team - Mission
Increase organizational awareness of Cloud security through education,
visualization and communication. Creating a risk aware culture that makes
continuous security compliance everyone’s responsibility.

Cloud Security Team - Principles
Gamifying Security
Get out from the cave Don’t just say “NO”
Ubiquitous encryption
Cloud Native Security
Share failures

Security JAM 2019
Scania Cloud Adoption – 4th of June 2019
Scania
Cloud Security

Security smells trend (May 
November)
Hand picked cloud
accounts with
low security posture
New positive trend!
Weekly security email

25
Thank You!
Anders Lundsgård
@anderslundsgard
https://devops.vision

What's hot

The DevOps Journey in an Enterprise - DOES 2021

Anders Lundsgård

DevOps @ Scania - Perforce on Tour, Berlin 2015

Anders Lundsgård

The Shift Lift scope has broadened during the Age of the Customer. As well as testing it brings other activities forward in the software development lifecycle to enable faster release cycles. For larger enterprises this can be a big cultural challenge. In this talk we will explore the new Shift Left and how you can get business stakeholder buy-in to set up your team for success and gain a huge return on the upfront investment.

Embedding a Shift Left Culture in your Enterprise

Gerald Bachlmayr

The DevOps Journey in an Enterprise, Scania - Delivery Of Things World 2017

Anders Lundsgård

An agile journey - Scania Connected Services at Meetup Go Agile - Stockholm (...

Anders Lundsgård

Costruire Applicazioni Cloud-Native con Spring Boot (Pivotal Cloud-Native Wor...

VMware Tanzu

Eseguire Applicazioni Cloud-Native con Pivotal Cloud Foundry su Google Cloud ...

VMware Tanzu

Slides for the presentation that I gave at DockerCon 2017 in Austin. The slot was rather short (20 minutes) and there wasn't a whole lot of time to dive into details, but I try to describe the main IT/business drivers that we've observed around container migration, our methodology for doing migrations in a structured manner, and then dive into some very practical topics based on existing migration exprience with Docker Datacenter Enteprise Edition.

Containers aren’t just for microservices – Containerizing Legacy Workloads

Oscar Renalias

Devops with Alibaba Cloud

gavaskar s

The DevOps journey in an Enterprise - Continuous Lifecycle London 2016

Anders Lundsgård

The DevOps journey in an Enterprise - Scania @ Swisscom software day 2016

Anders Lundsgård

Agile Tour Pune 2015: Dev-ops- niche or mainstream: Bhaskar Venugopalan

India Scrum Enthusiasts Community

Integrate Security and Compliance into your CI/CD Pipeline

DevOps Indonesia

Agile Tour Chennai 2015: Nexus - SRV Subrahmaniam

India Scrum Enthusiasts Community

Cloud expo 2018: From Apollo 13 to Google SRE - When DevOps meets SRE

Sanjeev Sharma

Containers at Netflx - An Evolving Story QConSF2015

Sangeeta Narayanan

50 production deployments a day, at least

Oscar Renalias

Cloud and Network Transformation using DevOps methodology : Cisco Live 2015

Vimal Suba

Serverless technology can unlock new capabilities for your integrations. It’s no surprise that the serverless cloud is being adopted across industries because it helps businesses stay flexible, agile, scalable, and operate at low cost. However, a serverless implementation has a hidden key to making it successful: serverless DevOps.If you are one of the countless organizations adopting serverless technology, you need to be able to plan, govern, and deploy your serverless footprint using serverless DevOps processes. In this webinar, we will describe the difference between traditional DevOps and serverless DevOps, discuss why serverless + serverless DevOps is a perfect recipe for success, and provide you with a serverless DevOps plan for making your serverless implementation scalable and successful. You will learn: The difference between traditional DevOps vs. serverless DevOps Serverless DevOps benefits and best practices Serverless DevOps common blind spots How to plan for serverless DevOps for your serverless implementations Who should attend: IT leaders planning to move their legacy/on-premise/iPaas system to the cloud People who are new or just starting out with serverless/cloud implementations Anyone considering using serverless technology for an upcoming implementation Reasons to attend: Prepare your path to achieve a successful serverless DevOps implementation Feel confident in using, deploying, and governing your serverless footprint

Serverless & Serverless Devops: Scaling Together

AaronLieberman5

Latest dev ops trends in 2021 you should know

Impressico Business Solutions

What's hot (20)

The DevOps Journey in an Enterprise - DOES 2021

DevOps @ Scania - Perforce on Tour, Berlin 2015

Embedding a Shift Left Culture in your Enterprise

The DevOps Journey in an Enterprise, Scania - Delivery Of Things World 2017

An agile journey - Scania Connected Services at Meetup Go Agile - Stockholm (...

Costruire Applicazioni Cloud-Native con Spring Boot (Pivotal Cloud-Native Wor...

Eseguire Applicazioni Cloud-Native con Pivotal Cloud Foundry su Google Cloud ...

Containers aren’t just for microservices – Containerizing Legacy Workloads

Devops with Alibaba Cloud

The DevOps journey in an Enterprise - Continuous Lifecycle London 2016

The DevOps journey in an Enterprise - Scania @ Swisscom software day 2016

Agile Tour Pune 2015: Dev-ops- niche or mainstream: Bhaskar Venugopalan

Integrate Security and Compliance into your CI/CD Pipeline

Agile Tour Chennai 2015: Nexus - SRV Subrahmaniam

Cloud expo 2018: From Apollo 13 to Google SRE - When DevOps meets SRE

Containers at Netflx - An Evolving Story QConSF2015

50 production deployments a day, at least

Cloud and Network Transformation using DevOps methodology : Cisco Live 2015

Serverless & Serverless Devops: Scaling Together

Latest dev ops trends in 2021 you should know

Similar to Scania's DevSecOps approach - Gamifying Security - auto:CODE

Adopting Kubernetes in an enterprise setting is challenging enough. Doing so in the highly-regulated banking industry presents further challenges. In this presentation Laura Rehorst (Product Owner – Stratus Platform, ABN AMRO) and Ferhat Yildiz (DevOps Consultant) will share some of the lessons learned during ABN AMRO’s Kubernetes adoption, discuss how Kubernetes accelerated the bank’s Digital Transformation, and demonstrate parts of our Continuous Compliance infrastructure.

From COBOL to Kubernetes: A 250 Year Old Bank's Cloud Native Journey

Ferhat Yildiz

Resume

Md Zahir Uddin

ABN AMRO DevSecOps Journey

Derek E. Weeks

Cloud Computing Services

lavanyamohan45

The Future of Cloud Innovation, featuring Adrian Cockcroft

Dun & Bradstreet Cloud Innovation Center

7 flavours of devops implementation

Aspire Systems

A Quick Introduction to Microsoft Azure Public Cloud

ZNetLive

Tech Talk - Cloud Transformation in 2017

Alex Rhea

Matias Creimerman - Cloud migration and modernization effort I spent a lot of time helping teams and companies migrate their important and core applications to the cloud. It’s a hard process between company culture and technical teams. The cloud apps are built using technologies and tools that weren’t mainstream three-five years ago. This content is property of Matias Creimerman. Any misuse of this material will be punishable. Creative Commons License This work is licensed under aCreative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License. About the author: Matías Creimerman

Matias Creimerman - Cloud migration and modernization effort

Matias Creimerman

IaaS Cloud Providers: A comparative analysis

Graisy Biswal

"CSC engineers will demonstrate enterprise policy, governance, and security products to deploy and manage enterprise and industry applications AWS. We will demonstrate automated provisioning and management of big data platforms and industry specific enterprise applications with automatically provisioned secure network connectivity from the datacenter to AWS over layer 2 routed AT&T NetBond (provides AWS DirectConnect access) connection. We will demonstrate how applications blueprinted on CSC's Agility Platform can be re-hosted on AWS in minutes or re-instantiated across multiple AWS regions. CSC Cybersecurity will also demonstrate how CSC can provide agile & consumption based endpoint security for workloads in any cloud or virtual infrastructure, providing enterprise management and 24x7 monitoring of workload compliance, vulnerabilities, and potential threats. Session sponsored by CSC."

(SEC321) Implementing Policy, Governance & Security for Enterprises

Amazon Web Services

SD-WAN_MoD.pptx for SD WAN networks connectivity

bayusch

Dedicated Web Hosting & Cloud Hosting Service Providers in India - i2k2 Networks

i2k2 Networks (P) Ltd.

POST GRADUATE PROGRAM IN CLOUD COMPUTING

MamathaSharma4

Cloud development solutions are tools and practices for building and managing applications on cloud computing platforms. Cloud platforms provide access to computing resources and services on demand. DevOps is a set of practices that aim to increase collaboration between software development and operations teams to streamline the software developmentlifecycle. DevOps development solutions integrate cloud services to enable continuous delivery,testing, and deployment of software applications. https://www.mobiloitte.com/devops-and-cloud/

DevOps And Cloud Solutions

Mobiloitte Technologies

Applying lean, dev ops, and cloud for better business outcomes

Kartik Kanakasabesan

https://gotocon.com/berlin-2016/presentations/show_talk.jsp?oid=8033 Fed up with stop and go in your data center? Why not shift into overdrive and pull into the fast lane? Learn how AutoScout24, the largest online car marketplace Europe-wide, are building their Autobahn. Reinventing themselves by making a radical transition from monoliths to microservices, from .NET on Windows to Scala on Linux, from datacenter to AWS and from built by devs and run by ops to a devops mindset. While the current stack keeps running, ever more microservices will go live as you listen to stories from the trenches. Key takeaways from this talk include: How to... … become cloud native … evolve the architecture … create “you build it you run it” teams … align with principles

GOTO Berlin 2016

Christian Deger

Présentation openstackinaction v1.2

Regis Allegre

During the session we will describe common methods used to create a Hybrid Cloud with AWS. We step through successful operational models, how to get started, and tools to simplify operations. We will explore topics such as networking, directories, DNS, and security. Importantly, we will cover ongoing operational and management practices. Speaker: Phil Barlow, Solutions Architect, Amazon Web Services Featured Customer - AMP

Creating your Hybrid Cloud with AWS -Technical 201

Amazon Web Services

Introducing drie

Jeremy Suarez

Similar to Scania's DevSecOps approach - Gamifying Security - auto:CODE (20)

From COBOL to Kubernetes: A 250 Year Old Bank's Cloud Native Journey

Resume

ABN AMRO DevSecOps Journey

Cloud Computing Services

The Future of Cloud Innovation, featuring Adrian Cockcroft

7 flavours of devops implementation

A Quick Introduction to Microsoft Azure Public Cloud

Tech Talk - Cloud Transformation in 2017

Matias Creimerman - Cloud migration and modernization effort

IaaS Cloud Providers: A comparative analysis

(SEC321) Implementing Policy, Governance & Security for Enterprises

SD-WAN_MoD.pptx for SD WAN networks connectivity

Dedicated Web Hosting & Cloud Hosting Service Providers in India - i2k2 Networks

POST GRADUATE PROGRAM IN CLOUD COMPUTING

DevOps And Cloud Solutions

Applying lean, dev ops, and cloud for better business outcomes

GOTO Berlin 2016

Présentation openstackinaction v1.2

Creating your Hybrid Cloud with AWS -Technical 201

Introducing drie

Recently uploaded

Dreaming Marissa Sánchez Music Video Treatment

nswingard

ICT role in 21st century education and it's challenges.pdf

Islamia university of Rahim Yar khan campus

Despite remarkable successes in various domains such as robotics and games, Reinforcement Learning (RL) still struggles with exploration inefficiency. For example, in hard Atari games, state-of-the-art agents often require billions of trial actions, equivalent to years of practice, while a moderately skilled human player can achieve the same score in just a few hours of play. This contrast emerges from the difference in exploration strategies between humans, leveraging memory, intuition and experience, and current RL agents, primarily relying on random trials and errors. This tutorial reviews recent advances in enhancing RL exploration efficiency through intrinsic motivation or curiosity, allowing agents to navigate environments without external rewards. Unlike previous surveys, we analyze intrinsic motivation through a memory-centric perspective, drawing parallels between human and agent curiosity, and providing a memory-driven taxonomy of intrinsic motivation approaches. The talk consists of three main parts. Part A provides a brief introduction to RL basics, delves into the historical context of the explore-exploit dilemma, and raises the challenge of exploration inefficiency. In Part B, we present a taxonomy of self-motivated agents leveraging deliberate, RAM-like, and replay memory models to compute surprise, novelty, and goal, respectively. Part C explores advanced topics, presenting recent methods using language models and causality for exploration. Whenever possible, case studies and hands-on coding demonstrations. will be presented.

Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity

Hung Le

Introduction to Artificial intelligence.

thamaeteboho94

SOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdf

Mahamudul Hasan

I had the honour of presenting my reflections on the autobiography of Professor Isaac Folorunso Adewole, titled "Uncommon Grace." As someone deeply invested in documentation and history, I found Professor Adewole's decision to narrate his journey from humble beginnings to occupying one of the highest offices in the land both inspiring and invaluable. In this eloquently written memoir, Professor Adewole provides a comprehensive account of his life, from his ancestral roots to his time as Minister of Health in Nigeria. The unique aspect of this autobiography is that he portrayed himself authentically without taking the help of third-party narratives, which is often seen in accounts of high-ranking officials. His upbringing was greatly influenced by his father's commitment to education. He became a prominent figure in advocating for the rights of the underprivileged through trade unionism. His story is one of unwavering determination, resilience, and faith. His experiences, including both successes and struggles, provide priceless lessons on leadership, perseverance, and the alignment of personal values with public service. While reading "Uncommon Grace," I was struck by the deep leadership lessons that are embedded within its chapters. Professor Adewole stresses the importance of inclusivity, servant leadership, and planning, which are all highly relevant in today's complex world. His commitment to accountability, as well as his primary responsibility as a researcher, serves as a guiding light for aspiring leaders across various disciplines. During his tenure as the Vice Chancellor of the University of Ibadan, he led with visionary leadership and transformative impact. His accomplishments have been meticulously documented in the book, which can serve as a blueprint for rejuvenating institutions and promoting academic excellence. In the latter part of his autobiography, Professor Adewole shares his experiences as a Minister, detailing the challenges he faced while serving the public with integrity and courage. His reflections on the complexities of public service, coupled with his commitment to the well-being of the nation, offer practical insights for policymakers and citizens alike. I have carefully read "Uncommon Grace" and it is more than just a memoir. It is a timeless book that is hard to put down once you start reading. While intellectuals may continue to debate whether uncommon grace was made possible by uncommon preparation or the other way around, I applaud Professor Adewole for sharing his ideas, knowledge, and experience with the public. I highly recommend this book to everyone.

Uncommon Grace The Autobiography of Isaac Folorunso

Kayode Fayemi

Digital collaboration with Microsoft 365 as extension of Drupal

Fabian de Rijk

Dreaming Music Video Treatment _ Project & Portfolio III

NhPhngng3

in kuwait௹+918133066128....) @abortion pills for sale in Kuwait City

Abortion pills in Kuwait Cytotec pills in Kuwait

• For a full set of 390+ questions. Go to https://skillcertpro.com/product/aws-data-engineer-associate-dea-c01-exam-questions/ • SkillCertPro offers detailed explanations to each question which helps to understand the concepts better. • It is recommended to score above 85% in SkillCertPro exams before attempting a real exam. • SkillCertPro updates exam questions every 2 weeks. • You will get life time access and life time free updates • SkillCertPro assures 100% pass guarantee in first attempt.

AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf

SkillCertProExams

Report Writing Webinar Training

KylaCullinane

lONG QUESTION ANSWER PAKISTAN STUDIES10.

lodhisaajjda

Klinik_ Apotek Onlin 085657271886 Solusi Menggugurkan Masalah Kehamilan Anda Jual Obat Aborsi Di Jakarta. KLINIK ABORSI TERPEECAYA _ Jual Obat Aborsi Cytotec Misoprostol Asli 100% Ampuh Hanya 3 Jam Langsung Gugur || OBAT PENGGUGUR KANDUNGAN AMPUH MANJUR OBAT ABORSI OLINE" APOTIK Jual Obat Cytotec, Gastrul, Gynecoside Asli Ampuh. JUAL ” Obat Aborsi Tuntas | Obat Aborsi Manjur | Obat Aborsi Ampuh | Obat Penggugur Janin | Obat Pencegah Kehamilan | Obat Pelancar Haid | Obat terlambat Bulan | Ciri Obat Aborsi Asli | Obat Telat Bulan | Pil Aborsi Asli | Cara Menggugurkan Konten | Cara Aborsi Tuntas | Harga Obat Aborsi Asli | Pil Aborsi | Jual Obat Aborsi Cytotec | Cara Aborsi Sendiri | Cara Aborsi Usia 1 Bulan | Cara Aborsi Usia 2 Tahun | Cara Aborsi Usia 3 Bulan | Obat Aborsi Usia 4 Bulan | Cara Abrasi Usia 5 Bulan | Cara Menggugurkan Konten | Kandungan Obat Penggugur | Cara Menghitung Usia Konten | Cara Mengatasi Terlambat Bulan | Penjual Obat Aborsi Asli | Obat Aborsi Garansi | Kandungan Obat Peluntur | Obat Telat Datang Bulan | Obat Telat Haid | Obat Aborsi Paling Murah | Klinik Jual Obat Aborsi | Jual Pil Cytotec | Apotik Jual Obat Aborsi | Kandungan Dokter Abrasi | Cara Aborsi Cepat | Jual Obat Aborsi Bergaransi | Jual Obat Cytotec Asli | Obat Aborsi Aman Manjur | Obat Misoprostol Cytotec Asli. "APA ITU ABORSI" “Aborsi Adalah dengan membendung hormon yang di perlukan untuk mempertahankan kehamilan yaitu hormon progesteron, karena hormon ini dibendung, maka jalur kehamilan mulai membuka dan leher rahim menjadi melunak,sehingga mengeluarkan darah yang merupakan tanda bahwa obat telah bekerja || maksimal 1 jam obat diminum || PENJELASAN OBAT ABORSI USIA 1 _7 BULAN Pada usia kandungan ini, pasien akan merasakan sakit yang sedikit tidak berlebihan || sekitar 1 jam ||. namun hanya akan terjadi pada saatdarah keluar merupakan pertanda menstruasi. Hal ini dikarenakan pada usiakandungan 3 bulan,janin sudah terbentuk sebesar kepalan tangan orang dewasa. Cara kerja obat aborsi : JUAL OBAT ABORSI AMPUH dosis 3 bulan secara umum sama dengan cara kerja || DOSIS OBAT ABORSI 2 bulan”, hanya berbedanya selain mengisolasijanin juga menghancurkan janin dengan formula methotrexate dikandungdidalamnya. Formula methotrexate ini sangat ampuh untuk menghancurkan janinmenjadi serpihan-serpihan kecil akan sangat berguna pada saat dikeluarkan nanti. APA ALASAN WANITA MELAKUKAN ABORSI? Aborsi di lakukan wanita hamil baik yang sudah menikah maupun belum menikah dengan berbagai alasan , akan tetapi alasan yang utama adalah alasan-alasan non medis (termasuk aborsi sendiri / di sengaja/ buatan] MELAYANI PEMESANAN OBAT ABORSI SETIAP HARI, SIAP KIRIM KESELURUH KOTA BESAR DI INDONESIA DAN LUAR NEGERI. HUBUNGI PEMESANAN LEBIH NYAMAN VIA WA/: 085657271886

Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...

ZurliaSoop

Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...

amilabibi1

Zone Chairperson Role and Responsibilities New updated.pptx

lionnarsimharajumjf

My Presentation "In Your Hands" by Halle Bailey

hlharris

Proofreading: Basics to Artificial Intelligence Integration. Become a Professional Proofreader and Editor Leveraging Human Expertise and Artificial Intelligence (AI) Technology and Tools. Table of Contents MODULE 1: INTRODUCTION TO PROOFREADING What is proofreading, and how is it different from editing? The importance of proofreading in publishing and communication Types of materials that require proofreading (books, articles, websites, legal documents, etc.) Proofreading marks and symbols MODULE 2: DEVELOPING PROOFREADING SKILLS MODULE 3: PROOFREADING TECHNIQUES Preparing for the proofreading process (setting up the workspace, tools, etc.) Reading techniques (line-by-line, word-by-word, backwards reading) Using proofreading checklists and guidelines Cross-checking against style guides and reference materials Marking up corrections and queries MODULE 4: PROOFREADING DIFFERENT TYPES OF CONTENT Proofreading fiction and non-fiction books Fiction Books: Non-Fiction Books: Proofreading academic and scientific papers Proofreading legal and business documents Proofreading websites and digital content Proofreading marketing and advertising materials MODULE 5: PROOFREADING TOOLS AND RESOURCES MODULE 6: PROOFREADING WORKFLOWS AND BEST PRACTICES MODULE 7: BUILDING A SUCCESSFUL PROOFREADING CAREER MODULE 8: AI TEXT EDITING AND PROOFREADING Benefits and limitations of AI in this field Benefits of AI in Proofreading: Limitations of AI in Proofreading: Examples of AI-powered text editing and proofreading tools Combining AI with Human Expertise AI Ethics and Bias in Text Editing Future Trends and Developments in AI Text Editing This cutting-edge course equips you with the essential skills and tools to become a proofreading pro in the age of AI technology. Designed for writers, editors, content creators, and anyone seeking to elevate their proofreading game, this masterclass combines time-tested proofreading techniques with the latest AI-powered text editing solutions. Through in-depth modules, you will master the art of proofreading, from developing razor-sharp attention to detail to mastering grammar, punctuation, and style guidelines. This masterclass also dives deep into the world of AI text editing. You’ll discover how AI-powered tools can aid in grammar and style checking, context-aware spell checking, consistency management, content optimization, and more. You will learn to seamlessly integrate AI tools into your proofreading workflows, combining the best of human expertise and AI technology for unparalleled results. Finally, this course will help you discover how to harness the power of AI to streamline your proofreading workflows, enhance accuracy, and deliver impeccable content every time, thanks to advanced proofreading techniques, such as line-by-line reading, backward reading, and cross-checking against reference materials, ensuring no error goes unnoticed.

Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...

David Celestin

Recently uploaded (17)

Dreaming Marissa Sánchez Music Video Treatment

ICT role in 21st century education and it's challenges.pdf

Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity

Introduction to Artificial intelligence.

SOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdf

Uncommon Grace The Autobiography of Isaac Folorunso

Digital collaboration with Microsoft 365 as extension of Drupal

Dreaming Music Video Treatment _ Project & Portfolio III

in kuwait௹+918133066128....) @abortion pills for sale in Kuwait City

AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf

Report Writing Webinar Training

lONG QUESTION ANSWER PAKISTAN STUDIES10.

Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...

Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...

Zone Chairperson Role and Responsibilities New updated.pptx

My Presentation "In Your Hands" by Halle Bailey

Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...

Scania's DevSecOps approach - Gamifying Security - auto:CODE

1. Scania’s DevSecOps Approach – Gamifying Security in the Cloud ANDERS LUNDSGÅRD, BERLIN – 2019-11-28

2. Scania Cloud Adoption – Security Team Anders Lundsgård Senior Engineer @ CS Delivery Engineering Cloud Engineer/Architect @ Scania Cloud Adoption @anderslundsgard

3. Disclaimer There is no official Scania “DevSecOps manifest definition”. DevSecOps in this presentation is only one view of DevSecOps. Based on the presenters experience in building, deploying and operating software in a secure way.

4. in the early days… More features quicker Stability

5. in the early days… Stability This is me today

6. • 3-8 people • Requirements • Technologies • Quality • Deployment • Monitoring • Operations 6 Autonomous Teams that fully own their services

7. 7

8. Zero Downtime Enables engineers to be present when their code goes live

9. Deploy != Release Feature Team Concern Business Decision

10. Remove Handovers Avoid sub optimize in organizational silos

11. Deploy frequency - Scania Connected Services • 2015 – Agile teams • 12 deploys per year • 2016 – Autonomous Teams • Continuous Delivery • 30+ Prod deploys per day • 2011 – Software projects • 2-3 in parallel • 3 deploys per year 1. Microservice Architecture 2. Challenged and improved infra related processes 3. Trust and courage from management Continuous Integration Infrastructure changes NOT included

12.

13. Cloud Adoption 20162014 Cloud First 2019 Cloud Only (For new initiatives) Cloud Native

14. Innovation Global Reach Security Cost Speed

15. 1000+ Engineers and 400+ AWS accounts = Feature TeamFT DE = Delivery Engineering (Cloud Satellite) DE FT FT FT FT FT FT FT FT DE FT FT FT FT FT DE FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT FT Multiple other departments co-located in same building Cloud Adoption (~10 engineers) Dev-teams that move to “DevOps”-teams with no investment tend to struggle in their cloud journey

16. Greenfield AWS setup Version Control cloud enabled AWS multi account strategy Immutable infrastructure In each Feature Team! Read Only in Prod for human beings NO CLOUD OPS

17. VIDEO https://dreambroker.com/channel/td4z2vr3/ovxsnico

18. Cloud Security Team - Mission Increase organizational awareness of Cloud security through education, visualization and communication. Creating a risk aware culture that makes continuous security compliance everyone’s responsibility.

19. Cloud Security Team - Principles Gamifying Security Get out from the cave Don’t just say “NO” Ubiquitous encryption Cloud Native Security Share failures

20. Security JAM 2019 Scania Cloud Adoption – 4th of June 2019 Scania Cloud Security

21. 21

22.

23. Winning team

24. Security smells trend (May  November) Hand picked cloud accounts with low security posture New positive trend! Weekly security email

25. 25 Thank You! Anders Lundsgård @anderslundsgard https://devops.vision

Editor's Notes

Scania’s DevSecOps Approach – Gamifying Security in the Cloud Anders will share Scania’s journey to the Cloud. How we have transformed the organization and our strategies for enabling teams to work autonomous with building, shipping and securing their applications in AWS. Key Takeaways * Establishing Self-Sufficient, Autonomous Software Teams * Managing 100+ Teams and 400+ Accounts in The Cloud * How We Make Security Fun for Developers via Gamification * Security Is Everyone’s Job!
Ops1: “Wait until Tuesdays CAB!” Dev1: “You must start to code and version your stuff” Dev2: “Use my repo. I’ll be contributing”
Ops1: “Wait until Tuesdays CAB!” Dev1: “You must start to code and version your stuff” Dev2: “Use my repo. I’ll be contributing”
2+ servers (load balanced) No state on servers Live upgrade of Database schema
2+ servers (load balanced) No state on servers Live upgrade of Database schema
Moved from software projects to agile teams and continuous integration. Even with continuous integration and agile teams it is hard to maintain a big codebase Also about 4 times more check-ins with the microservice architecture.
Version Control hosted in cloud: VCS is like bread and butter: Free for everyone Enabled fully automation in AWS
$en,Joanna$ Over 50 engineers participated in the security jam. $en,Joanna$ 13 teams with 4 engineers in each team.
$en,Joanna$ Hello. This is a summary of the AWS Security Jam event hosted by AWS professional services and Scania Cloud Adoption.
$en,Joanna$ The day started with a short introduction on how to register and get started with the Security Jam.
$en,Joanna$ There were 10 challenges of various difficulty. Taking clues reduced the score for accomplish a challenge. $en,Joanna$ 6 hours of focused work ended up in, without doubt, amazing results.
$en,Joanna$ Exciting to follow the scoreboard as the day progressed.

Scania's DevSecOps approach - Gamifying Security - auto:CODE

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Scania's DevSecOps approach - Gamifying Security - auto:CODE

Similar to Scania's DevSecOps approach - Gamifying Security - auto:CODE (20)

Recently uploaded

Recently uploaded (17)

Scania's DevSecOps approach - Gamifying Security - auto:CODE

Editor's Notes