Software is vulnerable. The good news is, software is vulnerable in ways that are known and can be addressed. For the past 15+ years, the security community has been publishing and tracking a list of common security vulnerabilities called the OWASP Top 10. This session provides a brief overview of ten common DevSecOps security vulnerability categories. It's a lot to cover in 30 minutes, so this session focuses on the general concepts. Presented at 2019 All Day Dev Ops: https://www.alldaydevops.com/addo-speakers/caroline-wong