Security Chaos Engineering: No More Surprises!

Tuesday, October 15, 2024

10:55am – 11:55am PT

Location: Roman II

CPE Credits 1

Speaker(s)

Hasan Yasar

Technical Director
Software Engineering Institute | Carnegie Mellon University
Carnegie Mellon University, United States

This presentation will discuss the enhancement of DevSecOps programs by integrating chaos engineering within a security framework. Introducing: the novel concept of Security Chaos Engineering. We will explore its pivotal role in advancing the maturity of DevSecOps initiatives, offering insights into valuable resources and tools to kick-start your program.

Emphasizing the hypothesis-driven testing approach, akin to ethical hacking, this talk aims to bridge methodologies between seemingly disparate domains to facilitate continuous security testing throughout the development lifecycle. Join us to uncover how merging chaos engineering with security practices can revolutionize your DevSecOps strategy, ensuring robust, resilient systems.

Learning Objectives:

Understand the concept of Security Chaos Engineering and its role in enhancing DevSecOps programs by integrating these practices within a security context.
Gain insights into how Security Chaos Engineering can be a pivotal factor in maturing DevSecOps initiatives, ensuring a more robust and resilient development cycle.
Receive practical guidance on the resources and tools available to start or enhance your own Security Chaos Engineering program, facilitating the integration of security practices into development cycles.