DevSecOps Summit: Blameless Retrospectives in DevSecOps at Global Healthcare Giants
Implementing a scalable DevOps program can seem like an impossible task at times. Add security into the mix and the challenge can appear insurmountable. Organizations around the world have come to realize the potential business impacts of adopting DevSecOps and how it can enable engineers to deliver more value to the market faster. While the prospect of transformation seems alluring, a great number of organizations are still unsure of where to start, what’s involved, how much it will cost and how to achieve success. Discussing our triumphs and tragedies not only bring clarity, but champion the idea that no matter the size of your organization - be it large enterprise or nimble startup - is different from one another. These retrospectives are an important mechanism for teams to develop transparency, share knowledge, and improve the way they work together. While often difficult to look back and identify failure when searching for success stories, it’s the things that go wrong that we learn from the most. In this session, DJ Schleen and Aaron Rinehart, two DevSecOps transformational leaders from the largest healthcare giants in the world share their retrospective experiences, lessons learned, and what they could have done differently. DJ and Aaron will each share where they started in their respective journeys, challenges they faced, and what it took to overcome them while walking through what their respective journeys looked like building a successful DevSecOps program.
DJ is a seasoned DevSecOps advocate and practitioner that provides thought leadership to organizations looking to integrate security into their DevOps practices. He comes from a practitioner background and specializes in architecting DevSecOps pipelines, automating security in DevOps environments, and breaking down organizational silos that inhibit the delivery of safer software. DJ has worked to streamline development pipelines and practices for many Fortune 100 organizations by focusing on culture and technique. He uses this expertise to surface the right technology to serve business goals and support outcomes. He is an international speaker, blogger, instructor, and author in the DevSecOps community, where he encourages organizations to deeply integrate a culture of security and trust into their core values and product development journey.
Aaron Rinehart has spent his career solving challenging engineering problems for organizations such as the United States Department of Homeland Security (DHS), National Aeronautics and Space Administration (NASA), and the Department of Defense (DoD). Rinehart has been a featured speaker at several media outlets and conferences, most notably the National Press Club, RSA, Velocity, and ABC News. Rinehart has been interviewed and quoted in various publications including the Huffington Post, DarkReading, SecurityWeekly, ISMG, and MarketWatch. Aaron has been expanding the possibilities of chaos engineering in its application to other safety-critical portions of the IT domain notably cybersecurity. He began pioneering the application of security in chaos engineering during his tenure as the Chief Security Architect at the largest private healthcare company in the world, UnitedHealth Group (UHG). While at UHG Rinehart released ChaoSlingr, one of the first open-source software releases focused on using chaos engineering in cybersecurity to build more resilient systems. Rinehart recently founded a chaos engineering startup called Verica with Casey Rosenthal from Netflix and is the O’Reilly author on the topic as well as a frequent speaker in the space.