The CISO's Guide for Implementing DevSecOps in the Enterprise

Chapter Summary

Minatee Mishra
Security Director @ Philips

DevSecOps at Philips

Minatee Mishra, Security Director of Philips, has a fair share of experience with DevSecOps as her journey with Philips in the digital shift started six years ago. The chapter discusses core elements that other organizations may want to consider when implementing DevSecOps. It also provides the author’s top three tips for implementing security technologies in DevOps.

By notifying software developers of security issues as soon as someone checks in the code or even while they are still developing, DevSecOps helps to detect security issues early and prevent costly resolutions later. This mantra of “test fast, fail fast, and fix fast” helps to ensure fast, successful releases.

Overall, the chapter emphasizes that security and development should not be treated as separate processes or activities and that a top-down and bottom-up approach to governance is crucial for the success of DevSecOps practices. By adopting DevSecOps, organizations can ensure that security is integrated into software development.

Claim your Free e-Copy Buy Printed Copy

BIO

Minatee Mishra is the Director (Product Security) at Philips HealthTech, Bangalore. Over her 25-year career, she has gained experience in architecture, design, and development, and is now responsible for system security. She has been instrumental in setting up the Security Center of Excellence (SCoE) at Philips. Under her leadership, the SCoE was awarded UL Firm Registration, a first for the medical industry. Minatee also leads the Philips cross-functional team for harmonizing the SBOM generation, Securing Cloud applications, DevSecOps, and initiatives around the secure development lifecycle.

Minatee has a master’s in Electrical Engineering from IIT Kharagpur, and a bachelor’s in Engineering from NIT Rourkela. She also holds CISSP, GCIH, CEH, and CCSK certifications. In addition, Minatee has been an advocate of product security at various national and international forums including HIMSS, RSA, DSCI, and Nullcon.

Minatee also teaches underprivileged children, and likes spending time with her family, doing yoga, reading, and traveling.

About the Book

As a leading provider of DevSecOps services, DevOn has seen firsthand how organizations can benefit from these transformations. But despite the widespread adoption of DevSecOps, there are still many misconceptions about what it is and what it can help you achieve. In this book, we address common concerns and misconceptions about DevSecOps, drawing on the insights of technology leaders from a variety of European organizations.

If you’re a modern-day leader looking to assess your organization’s performance or embark on a DevSecOps transformation, this book is a must-read. With the help of Irfaan Santoe, Rahul Sah, and Markus van Duijn, we’ve gathered the perspectives of 10 technology leaders from leading organizations to provide a comprehensive understanding of the current state and future of DevSecOps. Don’t miss out on the opportunity to gain valuable insights and learn from their organizations' performance.

Buy Now

Book Launch Event

About the Authors

Irfaan Santoe

Irfaan is a CISO, an Entrepreneur in InfoSec, and a Thought Leader in secure DevOps. He is on a mission to close the gap between the IT world of Development, Operations, and Security. Irfaan is the OWASP Chapter Leader in the Netherlands and actively contributes to open-sourcing security.

Rahul Sah

The Global CEO of DevOn, a technology consulting and software delivery organization, Rahul is passionate about helping organizations accelerate their journey toward high-performance enterprises.

Markus van Duijn

A DevOps enthusiast with 15 years of experience in agile, CI/CD, DevOps, security and leadership, Markus has seen firsthand how DevOps gets companies to a higher level by coaching, teaching, and experiencing DevOps principles

LEARN HOW THESE FRONTRUNNERS USE DEVSECOPS