This event has ended. Visit the official site or create your own event on Sched.
Sessions will be available during their listed time, and then on demand on the platform after the initial 24 hours of straight content!

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for GitLab Commit: Virtual 2020 to participate in the sessions. If you have not registered but would like to join us, please register and attend here.  Space in sessions is unlimited so advance sign-up is not necessary, it is just a convenience offered to guests.

To save a schedule you need to be logged in Sched, but this is not tied to your event registration. You do not need to be logged in to view the schedule.

Reminder: Sched is not the event platform, it is the schedule

Please note: This schedule is automatically displayed in Pacific Time (PT). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above “Filter by Date.”

Back To Schedule
Wednesday, August 26 • 20:40 - 21:05
Agile Compliance and Risk Operations

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Many organizations attempt adopting DevOps and Agile practices only to crash against a compliance wall such as Risk Management Framework (RMF), PCI-DSS, or even GDPR. Even Gene Kim’s “The Unicorn Project'', shows a security officer experiencing a complete breakdown before becoming a DevOps enthusiast. But really, it’s not that hard.

After being a Product Owner on an Agile team, I transferred to a security lead, operating the RMF with an org newly committed to Agile. My team worked through a mindset change without the breakdown, incorporating small compliance goals, integrating with developers, shifting security left, and building cooperative risk ownership. This session shares my experiences incorporating an Agile workplace with U.S. Government compliance.

avatar for Dr. Mark Peters

Dr. Mark Peters

Technical Lead, Novetta
Dr. Mark Peters works for Novetta as Technical Lead on several DoD cyber programs in San Antonio, TX and consults on various other DevOps issues.  A self-expressed DevOps junkie, his value-stream focuses on integrating teams and automating them away from value-wasting repetition... Read More →

Wednesday August 26, 2020 20:40 - 21:05 PDT
Magenta Stage