Philly ETE 2019 – Noopur Davis – Building Security In: DevSecOps

by
Tags: , , ,

Abstract

Many believe that better security comes from robust independent gating, but DevOps has proven that you can safely deploy orders of magnitude faster without human gating. Comcast uses a DevSecOps approach which focuses on automation, speed and team ownership of end-to-end product security lifecycle. It’s agile and developer-focused. It’s about building security in rather than bolting it on.

Learning Objectives:

  • Learn our seven-part approach, including executive sponsorship, artisanship, SDL, tooling and more.
  • Understand how and why to focus on DevOps teams, while not leaving others behind.
  • Find out why security is not just the right thing to do, but how it’s critical to make it the easy thing to do.

About Noopur Davis

Noopur Davis is Senior Vice President, Chief Product and Information Security Officer for Comcast. Her responsibilities include product security and privacy, information and infrastructure security, cybersecurity risk management, security architecture, security engineering, security operations and incident response, security intelligence and analytics, identity management, and Legal Response Center for Comcast Corporate and Comcast Cable businesses.

Noopur joined Comcast from Intel, where she served as Vice President, Global Quality, ISecG. Previously, she was a Visiting Scientist and Senior Member of Technical Staff at Carnegie Mellon University Software Engineering Institute, Principal of management consulting firm Davis Systems, and held various leadership and technical positions in Fortune 500 companies.

Noopur holds a Master of Science in Computer Science from the University of Alabama and a Bachelor of Electrical Engineering from Auburn University. She is a member of the Institute of Electrical and Electronics Engineers (IEEE), and the Association of Computing Machinery (ACM). She is the recipient of the WICT/SCTE•ISBE/Cablefax Women in Technology award for 2018.