OPEN TALK: Putting the "Sec" in DevSecOps: Automating Cloud Security as an Enabler


Taylor Smith
Palo Alto Networks, Bridgecrew Senior PMM

Taylor is a senior product marketing manager for Prisma Cloud at Palo Alto Networks, covering Shift Left and container security. He helps customers integrate security into DevOps practices to secure the entire cloud native stack. Previously, he held product marketing and strategy positions at Gremlin, Cisco and NetApp.


Cloud security in most dev environments is broken. With ever-changing environments, engineers focused on features, and DevOps enabling incredible agility, traditional cloud security can't keep up. Even with a security resource at hand, the chance of catching each bad Terraform default or hidden * in a wide-open IAM policy is near impossible across endless cloud services. In this session, we'll show how (with very little effort) you can adopt DevSecOps with the right training, tools, processes and strategy. You’ll get practical advice and tactical tips to start implementing IaC security scanning and fixing security issues right away.