OWASP Berlin Meetup - Navigating the DevSecOps Landscape
This year began with a talk at OWASP Berlin Meetup, which was hosted at Scoutbee GmbH (my current company). Around 40 security experts came to share their knowledge and experiences in different parts of the security industry.
About OWASP Berlin Meetup:
OWASP Berlin is an open exchange opportunity for anyone interested and enthusiastic about topics related to Information Security and Application Security. All our meetups are free and open. An OWASP membership is not required. The target group is anyone who is passionate about information security, such as: IT consultants, software developers and security testers, IT-managers, IT-architects and students. You can find more details about the Meetup on our OWASP Berlin | OWASP Foundation Site.
About my talk:
At the OWASP Berlin Meetup, I delivered a talk titled “Navigating the DevSecOps Landscape: Challenges and Opportunities”, highlighting the transition from traditional software development to a DevSecOps culture. I emphasized the importance of collaboration, shared responsibility, and continuous improvement across Development, Security, and Operations. The talk addressed the integration of security checks throughout the CI/CD pipeline while maintaining robust defenses on the operational side. Dispelling common misconceptions, I stressed that DevSecOps requires more than just tools or role merging—it necessitates cultural shifts, effective governance, and specialized expertise. I also explored the benefits of DevSecOps, such as enhanced security and innovation, alongside challenges like tool integration and regulatory compliance.