Amazon Web Services
In this AWS re:Invent 2023 session, experts discuss building secure applications on AWS using the Well-Architected Framework. The speakers cover the journey of developing applications on AWS, technological choices for a strong security foundation, and patterns for implementing security throughout the development lifecycle. They emphasize the importance of threat modeling, code analysis, and integrating security into CI/CD pipelines. The session also features insights from Zillow on scaling AppSec efforts across platform teams, highlighting the value of empathy and collaboration between security and development teams. Key AWS services discussed include CodeWhisperer, AWS Signer, and Amazon Inspector for enhancing application security.