Loading…
Attending this event?
Wednesday, November 20 • 11:50am - 12:25pm
Application Observability for DevSecOps - Sabree Blackmon, Docker

Sign up or log in to save this to your schedule and see who's attending!

Technical teams are eagerly "pushing left" -- supply-chain concerns and security testing are now first-class members of the development lifecycle. But, what do we do about security as an operational concern? How do we give our operators the data they need to respond to application security events? Luckily, these observability tools already exist.

In this talk, Sabree will demonstrate how we can securely tool our applications with metrics & tracing, using OpenTelemetry, to provide valuable security heuristics & auditing to our operators. First, we'll ask, what kind of data is useful? Then, he'll show how to set up Prometheus alerting around metrics & overview anomaly detection & forecasting. Lastly, we'll exercise a test application, and show how real-time tracing can be used to quickly spot & investigate adversarial and anomalous requests.

Speakers
avatar for Sabree Blackmon

Sabree Blackmon

Senior Security Engineer, Docker
Sabree is a Security Engineer at Docker. While he cut his technical teeth in military & hardened embedded systems, Sabree now enjoys solving complex security problems in distributed systems & the cloud. He is passionate about developing a secure supply-chain, reproducible build tools... Read More →


Wednesday November 20, 2019 11:50am - 12:25pm
Ballroom Sec 20AB - San Diego Convention Center Upper Level
Feedback form isn't open yet.