(TR13) (FIC) SecDevOps vs. native cloud

Containers, micro-services, APIs: «cloud-native» technologies are now standards for application development. SecDevOps processes must be reinvented to reconcile agility, innovation and security. There are many challenges, including in terms of HR, organisational, technical and legal aspects. How can collaboration between the various in-house teams be organised? What are the new working methods? What are best practices-isolation of critical components, integration of third-party tools, data encryption? What are technical solutions to improve the security, integrity and reliability of applications and systems? What can be used as a model of shared responsibility with cloud providers? How to secure the intervention of multiple stakeholders from both inside and outside ?