Agile + DevOps West 2019 Concurrent Session : Seven Deadly Sins of DevSecOps


Wednesday, June 5, 2019 - 10:30am to 11:30am

Seven Deadly Sins of DevSecOps

Add to calendar

Do you know teams that are merely doing “Cargo Cult DevOps”? Near the end of WWII, the Allies had airstrips on many islands in the south Pacific. The natives on these islands noticed that when the Allies put the coconuts on their ears and spoke into the banana, the gods would send down a magical flying creature with food and supplies. So, when the war ended and the Allies left, the natives put the coconuts on their ears and spoke into the banana and wondered why the gods failed to bless them with food and supplies. They failed to understand that the headphones and microphone had to be hooked up to a radio and that someone must be listening on the other end for that radio to do any good. Thus is born the phrase, “Cargo Cult", a good idea that has been poorly implemented. A lot of development teams are going through the DevOps motions without understanding how the things they are doing are supposed to benefit their teams and their organization. Cargo Cult DevOps (or adopting DevOps practices without understanding how they work) is Deadly Sin #1 of this talk. You’ll have to come to the talk to learn how to avoid this and to hear about the other six. Don’t fear that this talk is all fire and brimstone. Larry will briefly introduce each deadly sin but then quickly shift to the corresponding heavenly virtue by explaining what you should be doing.

Larry Maccherone

Larry Maccherone is an industry-recognized thought leader on Lean/Agile, Analytics, and DevSecOps. He currently leads the DevSecOps transformation at Comcast. Previously, Larry led the insights product line at Rally Software which enabled better decisions with data, leveraged big data techniques to conduct groundbreaking research, and offered the first-ever agile performance benchmarking capability. Before Rally, Larry worked at Carnegie Mellon with the Software Engineering Institute (SEI) and CyLab for seven years conducting research on cybersecurity and software engineering. Keep up with Larry on LinkedIn.