February 1-2, 2023 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2023 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Standard Time (PST), UTC -8. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
Back To Schedule
Wednesday, February 1 • 11:50am - 12:25pm
Yes, Application Security Leads to Better Business Value. Learn How from Experts. - Larry Carvalho, RobustCloud; Hillary Benson, Gitlab; Kirsten Newcomer, Red Hat; David Zendzian, VMware

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Cloud native technologies give organizations a much better toolset to gain the agility to meet business challenges. According to a CNCF survey, security is one of the top three challenges in migrating to cloud native architectures. Inadequate confidence in security leads to fewer innovative solutions. DevSecOps and Shift Left are security practices that ensure vulnerabilities are found much earlier in a development process, improving confidence to deploy cloud native applications. Larry Carvalho, Principal Consultant at RobustCloud, will moderate this session. Hillary Benson, from Gitlab, will highlight how cloud native technologies, paired with the right strategy and toolset, present an outsized opportunity to reduce unnecessary security risk drastically. Kirsten Newcomer, from Red Hat, will share how to holistically secure your platform and application and enable teams to build secure pipelines with security controls as close to the developer as they wish. David Zendzian, from VMware, will discuss how shifting left security outcomes can only partially translate into building new skills for the developer community. In this session, you will hear examples of companies using application security practices to reduce the risk of non-compliance and deliver innovative solutions.

avatar for David Zendzian

David Zendzian

Head of Tanzu Global Field CISO team at VMware, VMware Tanzu
David has over 30 years Information Technology and Security experience and is the Head of VMware Tanzu Global Field CISO team.  David came to VMware/Pivotal from a stealth startup bank where he was CISO responsible for building the complete security program for a startup FDIC regulated... Read More →
avatar for Larry Carvalho

Larry Carvalho

Principal Consultant, RobustCloud
Larry Carvalho of RobustCloud LLC provides strategy and insight into the adaption of Edge and Cloud Computing technologies. He provides advisory services and works closely with customers and vendors to help all parts of the ecosystem understand cloud computing, map business goals... Read More →
avatar for Kirsten Newcomer

Kirsten Newcomer

Director, Cloud Security Product Management, Red Hat
Kirsten works closely with Red Hat’s many security professionals across the Red Hat portfolio of enterprise-ready open source offerings. Kirsten is a diversified software management professional with 15+ years of experience in security, application development and infrastructure... Read More →
avatar for Hillary Benson

Hillary Benson

Director, Product Management, Gitlab
Hillary Benson is the Director of Product Management for GitLab’s suite of security and data science offerings. Before GitLab, she held roles as a startup product executive, security practitioner, and intelligence professional with the National Security Agency. Hillary holds an... Read More →

Wednesday February 1, 2023 11:50am - 12:25pm PST
Room 608
  101 Track
  • Content Experience Level Any