TL;DR - THE SHORT VERSION: CALL FOR SPEAKERS IS OPEN

Event: DevOps Connect: DevOpsSec
Location: RSA Conference 2015, San Francisco, CA
Room: Moscone Center, West | Room: 2018
Date of DevOpsSec: Monday, April 20, 2015
Time: 9:00am to 5:00pm, PST

>> Closing date for submissions: Midnight Pacific time, February 15, 2015 <<

DETAILS

Whether we like it or not, DevOps is upon us. The DevOps Enterprise Summit in October 2013 showed us that it’s not just for Internet startups, but it’s for large complex, and highly regulated organizations such as Disney, Capital One, Macy’s, GE, Nordstrom, Target, U.S. Citizenship and Immigration Services at DHS, and many more.

DevOps and "continuous everything" is profoundly changing the entire software industry. Our goal is to show how the fittest in InfoSec are adapting (and how we all must adapt). The purpose of the DevOps Connect: Security Edition is to assemble the best practitioners who are forging how InfoSec integrates into DevOps, to grow the tribe, and to build relationships and collaborations with DevOps leaders and luminaries outside of the security "Echo Chamber".

Gene and Josh first introduced “Rugged DevOps” to RSA 2012 and have been building collaborations and bridges between those worlds ever since. For 2015, we've asked them to host this day-long conference with the following goals:

* bring the best and brightest of the DevOps and InfoSec communities together
* share and codify effective patterns and practices, for mutual growth and benefit
* for new-comers, demystify the DevOps foundational concepts that every InfoSec practitioner needs to know
* capture the failures and toughest problems facing our industry, and mobilize to solve them

We are looking for speakers to discuss the unique challenges of adopting DevOps in the enterprise, and the ways to overcome them. Specific topics we're looking for include, but are not restricted to:

* How did you get senior management buy-in, what did you do, and how did you quantify the business value?
* How did you overcome objections inside the organization?
* How did you design and implement effective controls to mitigate security risks?
* Which business area (and application) did you start with, why, and what did you do?
* What were the top challenges, and how did you overcome them?
* What were your top mistakes, and what advice would you give as a result?
* In-progress stories (and even nightmares) are welcome!

Other submission guidelines:

* Talk slots will be 30 minutes, of which a few minutes should be reserved for Q&A.
* Attendees must be able to use the bulk of the presentation's lessons without buying or using a particular tool or service.
* While we love consultants and vendors (they're some of our favorite people!), we are looking for stories from the organizations adopting these practices. We are prioritizing practitioner presentations (or joint ones with their game changing consultant/vendors).
* You can submit up to three talks for the conference. No spamming.
* Each submission should end with a slide communicating three things:
1) A specific challenge you could use help with (people, process, or technology).
2) A specific offer of how you could help other attendees (people, process, or technology).
3) If you could wave a magic wand and get any change you want from the DevOps and "continuous everything" toolchains you depend upon, what would it be and why?


The closing date for submissions is midnight Pacific time, February 15, 2015.

Thanks for your interest in DevOps Connect: Security Edition and we look forward to reading your proposal!

Thank you!
Josh Corman, Gene Kim