DevSecOps in the Enterprise Book Mockup

The CISO's Guide for Implementing DevSecOps in the Enterprise

View Book Page

Chapter Summary

Ori Fragman Photo

Ori Fragman
CISO @ Hapag-Lloyd

DevSecOps at Hapag-Lloyd

In this chapter Ori Fragman, CISO at Hapag-Lloyd believes that DevSecOps is a term that refers to the intentional and structured implementation of security practices throughout the entire software development process. While different opinions may exist on the specifics of DevSecOps, the focus is on integrating security into the development process, from the earliest stages of conception to ongoing maintenance.

This research article identifies governance, mindset, and culture as the three fundamental elements required for success in DevSecOps, where their effective implementation has benefitted previous organizations. The integration of application development teams with security is highlighted, and the creation of a Platform Security Officer (PSO) role is seen as an effective way to strengthen this integration. The PSO not only gains stakeholder acceptance for the importance of security but also understands the context of development projects to create better security outcomes. While security has always been a part of DevOps, DevSecOps introduces a structured, proactive approach to security implementation, with the mindset of “security first.”

Finally, Fragman describes that by prioritizing security to the same extent as other aspects of DevOps, organizations can build better security into platforms and products, creating a more robust and secure software development process.

Claim your Free e-CopyBuy Printed Copy

BIO

devsecops-book-bio-ori

Ori is a senior executive with over 18 years of unique and broad international experience, strong leadership and business-skills, and deep domain knowledge in the field of Information Technology, Software Development, and Cyber Security. Ori has been leading and growing diverse and international teams through change and working with and consulting to clients from different sectors and industries and in different scales, including some of the most well-known brands and FTSE100 & S&P100 companies.

Currently, Ori is the CISO of Hapag-Lloyd, one of the world’s leading liner shipping companies with 14,300 employees and more than 400 offices in 137 countries. Prior to joining Hapag-Lloyd, Ori was the VP Information Security & CISO Europe and Indonesia of Ahold Delhaize, one of the world’s largest food retail groups, a leader in supermarkets and e-commerce, and a company at the forefront of sustainable retailing

Ori is a Board Member and Mentor of several international Fintech & Cyber Security VCs, start-ups, and scale-ups and a recognised public speaker and, amongst other, appear in professional conferences.

About the Book

DevSecOps in the Enterprise Book Mockup

As a leading provider of DevSecOps services, DevOn has seen firsthand how organizations can benefit from these transformations. But despite the widespread adoption of DevSecOps, there are still many misconceptions about what it is and what it can help you achieve. In this book, we address common concerns and misconceptions about DevSecOps, drawing on the insights of technology leaders from a variety of European organizations. 

If you’re a modern-day leader looking to assess your organization’s performance or embark on a DevSecOps transformation, this book is a must-read. With the help of Irfaan Santoe, Rahul Sah, and Markus van Duijn, we’ve gathered the perspectives of 10 technology leaders from leading organizations to provide a comprehensive understanding of the current state and future of DevSecOps. Don’t miss out on the opportunity to gain valuable insights and learn from their organizations' performance. 

BRAVE new Books logo
Buy Now
DSO bruna book logo
Buy Now
dso-bol.com book logo
Buy Now

Book Launch Event

About the Authors

Irfaan Santoe

Irfaan Santoe

Irfaan is a CISO, an Entrepreneur in InfoSec, and a Thought Leader in secure DevOps.  He is on a mission to close the gap between the IT world of Development, Operations, and Security. Irfaan is the OWASP Chapter Leader in the Netherlands and actively contributes to open-sourcing security.

Rahul Sah

Rahul Sah

The Global CEO of DevOn, a technology consulting and software delivery organization, Rahul is passionate about helping organizations accelerate their journey toward high-performance enterprises. 

Markus van Duijn

Markus van Duijn

A DevOps enthusiast with 15 years of experience in agile, CI/CD, DevOps, security and leadership, Markus has seen firsthand how DevOps gets companies to a higher level by coaching, teaching, and experiencing DevOps principles

LEARN HOW THESE FRONTRUNNERS USE DEVSECOPS

hapag-lloyd-logo
Artboard-1ldpi-1
nn-logo
royal-haskoning
allianz
apg-logo
achmea-logo

DevSecOps Visions from
10 European Information Security Leaders

Gain Insights from Information Security Leaders. Click on photos to read Speaker Chapters.

martijn-dekker
Read Chapter

Martijn Dekker
CISO @ ABN AMRO

floor-website
Read Chapter

Floor van Eijk
CISO @ NN Group

willem-van-der-valk-500-500
Read Chapter

Willem van der Valk
GISO @ Achmea

foto: Philip Driessen – APG – Frans van Kessel
Read Chapter

Frans van Kessel
Chief Digital Officer @ APG

alex-pabst-website
Read Chapter

Alexander Pabst
Deputy Group CISO @ Allianz

ard-westerik-profile-pic
Read Chapter

Ard Westerik
CTO @ Royal HaskoningDHV

Tom Moekotte
Read Chapter

Tom Moekotte
ISO @ Royal HaskoningDHV

Ori Fragman
Read Chapter

Ori Fragman
CISO  @ Hapag-Lloyd

Minatee Mishra
Read Chapter

Minatee Mishra
Security Director @ Philips

Fred Jekel
Read Chapter

Fred Jekel
CISO @ Van Lanschot Kempen

"Implementing DevSecOps in the Enterprise: A Guide for CISOs" BOOK

TAP INTO OUR EXPERTISE & RECEIVE YOUR COMPLIMENTARY COPY!

Find motivation and receive tailored advice in just 15 minutes!!

Explore Our Bestselling Book Collections
High Performing DevOps Enterprises

High Performing DevOps Enterprises

Toolkit for Agile

Toolkit For Agile Coaches & Scrum Masters

0

Start typing and press Enter to search