DiscoverCybersecurity Where You Are (video)Episode 154: Integration of Incident Response into DevSecOps
Episode 154: Integration of Incident Response into DevSecOps

Episode 154: Integration of Incident Response into DevSecOps

Update: 2025-09-24
Share

Description

In episode 154 of Cybersecurity Where You Are, Sean Atkinson discusses incident response in DevSecOps, exploring challenges and solutions in modern software development. He emphasizes the importance of integrating security into development processes and speaks about common issues like alert fatigue and software supply chain vulnerabilities. Here are some highlights from our episode:

  • 01:32 . Common challenges with modern software development
  • 03:54 . High-speed and continuous deployment
  • 07:08 . Incident correlation with cloud deployment strategies
  • 10:00 . Software supply chain vulnerabilities
  • 12:45 . Alert fatigue and false positives
  • 14:30 . Testing and automation as enablers of real-time anomaly detection
  • 17:40 . The responsibility of incident responders to understand what they see
  • 18:58 . Automated control and a projectized approach to implementing zero trust
  • 21:26 . Oversight and governance with artificial intelligence and machine learning
  • 23:24 . Continuous improvement and early detection
  • 28:08 . Continuous monitoring and logging, automation, and incident response drills
  • 30:03 . Moving down a path of helping incident responders become culturally aware

Resources

If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing podcast@cisecurity.org.

Comments 
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Episode 154: Integration of Incident Response into DevSecOps

Episode 154: Integration of Incident Response into DevSecOps