Abstract:

Today, organizations are pushing code more frequently and faster than ever, aiming to reduce the time to market for software delivery. In addition, they should maintain their budget, even reduce it, while the number of projects is constantly increasing. At the same time, threat actors are using Software/Web applications as an initial entry point of cyberattacks (Gartner 2023), with a substantial growth of cyberattacks involving the exploitation of vulnerabilities to initiate a breach (Verizon, 2024).

Software bugs, including vulnerabilities, are a fact of life. The longer they remain undetected, the higher the cost of fixing them, and the higher the risk of malicious actors exploiting them. Mitigating these risks requires new ways of thinking, working, organizing and measuring inside organizations.

In this doctoral training, we will deal with these concepts and see how securing the software delivery life cycle can be better addressed by reducing costs through a proactive approach, known as DevSecOps. This approach replaces the traditional development/operations one known by the “the wall of confusion” challenge !

Bio:

Doctor and Entrepreneur with 15 years of field experience between Europe and North America. Security as code, Vulnerability management, Cryptography and Cyber ​​Threat Intelligence are among the topics Wiem is passionate about.

Today, as the founder of Cyber ​​Chapters, Wiem contributes to enhance her clients’s cyber-strategic plan. And as designer and teacher of the DevSecOps course at Polytechnique Montréal, she enjoyed sharing her experience with the academic and research community.

Wiem had the honor of obtaining the European Trophy of the professional cyber woman in 2022 and the Cyber ​​Talent Trophy in Quebec in 2023. She contributes now to promote innovative initiatives for a cyber resilient society in Canada, being an expert member of the IMC2 Multidisciplinary institute, being an expert member of the IMC2 Multidisciplinary Institute for Cybersecurity and Cyberresilience.