Agile2014 has ended
Back To Schedule
Wednesday, July 30 • 15:45 - 17:00
Keeping The Auditor Away: DevOps Compliance Case Studies (Gene Kim, James Deluccia) LIMITED

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Limited Capacity seats available

Co-presenter James DeLuccia IV

Organizations and development teams are moving beyond static deployment models to those embracing a continuous delivery/DevOps-style set of processes. The deployment of doing tens, hundreds, or even thousands of deploys per day as 'normal' does not align to the SDLC, separation of duties, and common controls expected by auditors.

In this presentation, we will describe what auditors look for in a compliance audit, how to develop alternate control procedures that fulfill those reporting requirements, how to avoid “red flags” that indicate inadequate controls, and real world case studies and reporting artifacts.

Gene Kim has been studying high performing IT organizations since 1999 and helped develop the SOX scoping guidelines with the Institute of Internal Auditors in 2005. James DeLuccia IV is the leader for the Ernst & Young Americas Certification Services, James oversees all of the audits against common industry standards, and champions several global program implementation roll-outs. Developing and 'translating' the control environment behaviors of clients, such as Google, Amazon, Workday, and others is difficult. This discussion will bridge the needs of auditors with the community of developers by sharing examples, discussing the assurance expectations, and how to communicate to pass an audit.

avatar for James DeLuccia

James DeLuccia

James DeLuccia IV a published author, practitioner, auditor, and currently a Senior Manager with Ernst & Young brings first hand research and experience on third party vendor trust and global security operations. Mr. DeLuccia leads the Americas certification and compliance services... Read More →
avatar for Gene Kim

Gene Kim

Founder and Author, IT Revolution
Gene Kim is a Wall Street Journal bestselling author, researcher, and multiple award-winning CTO. He has been studying high-performing technology organizations since 1999 and was the founder and CTO of Tripwire for 13 years. He is the author of six books, The Unicorn Project (2019... Read More →

Wednesday July 30, 2014 15:45 - 17:00 EDT
  DevOps, Talk