Put open source to work
July 16–17, 2018: Training & Tutorials
July 18–19, 2018: Conference
Portland, OR
Josh Bressers

Josh Bressers
Lead, Product Security, Elastic

Website | @joshbressers

Josh Bressers is the head of product security at Elastic. Josh has been involved in the security of products and projects, especially open source, for a very long time and has helped build and manage security groups for many open source projects as well as a number of organizations—everything from managing vulnerabilities and the security development lifecycle to DevSecOps, security product management, security strategy, and nearly any other task that falls under the security umbrella. Josh cohosts the Open Source Security Podcast. He is an active member of the Distributed Weaknesses and Filing project, which is in the process of leveraging the power of open source for CVEs.


11:50am12:30pm Thursday, July 19, 2018
Software methodologies
Location: C123/124
Level: Intermediate
Josh Bressers (Elastic)
Average rating: *****
(5.00, 3 ratings)
First open source won. Then DevOps won. Now there's talk of DevSecOps, which by its very name suggests DevOps isn’t secure. But security, just like DevOps, isn’t a destination; it’s a journey. Josh Bressers asks, rather than trying for perfect security, what if we think of security as a minimum viable product? Read more.