Join (ISC)2 Toronto Chapter’s August event Fortifying DevSecOps: Unleashing Security SRE and Chaos Engineering for Resilient Protection
Date: August 17, 2023
Time: 6 PM EST
Join us for this fascinating session on Fortifying DevSecOps: Unleashing Security SRE and Chaos Engineering for Resilient Protection!
- 6:00-6:05 PM: Land Aknowledgment and Introduction – Abimbola Adegbite, (ISC)² Toronto Chapter
- 6:05-7:10 PM: Fortifying DevSecOps: Unleashing Security SRE and Chaos Engineering for Resilient Protection – Simon Sulyma & Ihor Kravchuk
- 7:10-7:30 PM – Q/A
- 7:30-8:00 PM: Virtual Networking
In today’s ever-evolving threat landscape, traditional security measures are no longer sufficient to protect modern organizations. DevSecOps has emerged as a powerful approach to integrate security into the software development lifecycle from the beginning and also ensures that applications running in production are equally protected.
This presentation explores the concept of shifting security right, with a specific focus on utilizing Security Site Reliability Engineering (SRE) and Chaos Engineering to verify the effectiveness of security controls. Those two combined help align security and operations teams to establish a proactive security posture.
In addition, they provide a novel approach to ensuring the resilience and effectiveness of security controls by simulating real-world attack scenarios, and verifying how organisations can identify vulnerabilities, validate incident response capabilities, and optimize security measures.
Ihor Kravchuk has over 20 years of extensive experience in the field of IT and Cybersecurity with a special focus on infrastructure and network security, DevOps, and cloud security for both public and private clouds. He works as Director of Public Cloud Security Site Reliability Engineering at the Royal Bank of Canada where he leads a team that is currently implementing security chaos engineering and resilience testing practices. Ihor holds the AWS Certified Architect and AWS Certified Security certifications and is highly enthusiastic about exploring new technologies and actively contributing to the OpenSource community.
Simon Sulyma is an expert in the fields of cybersecurity and information risk, with 18 years of experience designing, building, securing, making compliant, and auditing IT systems and networks for both medium-sized and large financial institutions. Most recently, he has been focusing on Governance, Risk, and Compliance, as well as DevSecOps at Manulife. He frequently speaks at conferences and meetups, organizes community events, holds a Master’s degree in Information Security, and has obtained certifications such as CISA, CISSP, CISM, CRISC, CCSP, and AZ-500.