The presentation shows how software development developed from the waterfall model to DevOps to improve software quality. However this is not the end of the transition and more and more people are talking about DevSecOps.

The core of the talk is the journey of a microservice traveling along a build pipeline making the following steps to become a secure software:

• Thread Modeling
• Secure Development Guidelines
• Code Reviews
• Dependency Scanner
• Application Security Testing
• Infrastructure as a Code
• Secrets Management
• Logging and Monitoring
• Disaster Recovery