Skip to main content
ISC2 Security Congress 2024 Main banner
 
Icon Legend
Additional Fee Required
Additional Fee Required
Pre-Registration Required
Pre-Registration Required
Online & Virtual
Online & Virtual
Onsite Only
Onsite Only
Earn CPE Credits
Earn CPE Credits
Livestreamed Session
Livestreamed Session
Included in Guest Pass
Included in Guest Pass
Invite Only
Invite Only
Session Recorded
Session Recorded
Student Experience
Student Experience
Back

On-Site and Virtual

Governance, Risk & Compliance (GRC)

Secure from Code to Cloud: How to Bridge Security, Risk, and Compliance (Sponsored by RegScale)

Tuesday, October 15, 2024
9:10am – 10:10am PT
Location: Milano V - VI
CPE Credits 1
Online & Virtual Earn CPE Credits Livestreamed Session Session Recorded
Dynamic Operational Control Assurance revolutionizes how CISOs manage security, risk and compliance, providing real-time visibility into control domains across globally distributed environments. This approach embeds compliance as code within the CI/CD pipeline, leveraging AI and OSCAL capabilities. It ensures operational readiness, legal defensibility and immediate responsiveness. Integrating Continuous Controls Monitoring with DevSecOps enables proactive risk management, enhanced visibility and stronger security, empowering CISOs to stay on top of enterprise-wide changes and maintain robust security from code to cloud.

In this session, we will discuss:
• The concept of dynamic operational control assurance for managing security, risk, and compliance
• How to embed compliance as code and OSCAL in CI/CD pipelines.
• Continuous Controls Monitoring with DevSecOps for stronger security.

Learning Objectives:

  • Understand how to apply dynamic operational control assurance for real-time security, risk, and compliance management.
  • Learn how other companies are implementing compliance as code in CI/CD pipelines using AI and OSCAL.
  • Learn how to integrate Continuous Controls Monitoring (CCM) with DevSecOps to enhance security from code to the cloud.