# Shift-Left AppSec CI/CD Pipeline

This introductory workshop provides a practical foundation in Application Security (AppSec) and demonstrates how to integrate security early in the software development lifecycle using a shift-left approach. Designed for beginners, the session covers essential terminology, key concepts in DevSecOps, and enforcement methods that help maintain secure and high-quality code. The workshop concludes with a hands-on demo of an AppSec-enabled CI/CD pipeline.

##### Instructor

Omar Aladdin  
[https://www.linkedin.com/in/omar-aladdin/](https://www.linkedin.com/in/omar-aladdin/)

##### What You Will Learn

\- Types of Application Security Assessments  
\- Terminologies of AppSec  
\- What is DevSecOps  
\- Enforcement Techniques in DevSecOps (Quality Gates)  
\- Challenges of DevSecOps  
\- Hands-On Demo - a Shift-Left AppSec CI/CD Pipeline

##### Who Should Attend

Developers, DevOps engineers, junior security engineers, and anyone new to AppSec or DevSecOps who wants a practical introduction to securing applications early in the development lifecycle.

##### Outcome

Participants will leave with a solid understanding of basic AppSec concepts, how DevSecOps improves security, and how to implement a simple shift-left AppSec pipeline.

##### Session Recording 

[https://drive.google.com/file/d/1dT1aeX-jQZwM0ZBnHft8xYkZfD1JRMqL/view?usp=share\_link](https://drive.google.com/file/d/1dT1aeX-jQZwM0ZBnHft8xYkZfD1JRMqL/view?usp=share_link)