Tutorial A

Tutorials

Tutorial A
Harmonizing DevSecOps, and AI  for Transformative Software Development

Fees

 General Tutorial Attendee (Full-Day): $500
Full-Time Student (Full-Day): $250

Date

 Monday, February 23, 2026

Time

 8:00 AM – 4:30 PM PT

Overview

 The integration of Agile and DevSecOps methodologies provides a foundation for rapid, secure development. Introducing Generative AI (GenAI) into these workflows accelerates reasoning, coding, automates testing, and enhances feedback loops. This tutorial analyzes this synergy’s transformative impact on complex system, examining how it redefines, reasoning, coding, testing, quality assurance, and predictive analytics to improve system reliability and performance. We will also discuss the multifaceted challenges of this integration, including ethical dilemmas, input relevancy, and risks of reduced human oversight, offering a strategy to address complexities in safety-critical and scalable real-time applications.

Modules:

Day long AI+DevSecOps tutorial will cover core main modules and tentative schedule as follow. Course break can be adjusted to align other tutorials.

08:30 – 09:30 Module 1: Foundations Agile &DevSecOps

    • Definition of a SW Deployment pipeline
    • DevOps Foundations: Business, Culture, Communication, Architecture
    • Agile Foundations: Mindset, Agile Techniques, Common process
    • SCRUM, KANBAN

09:30 – 10:30 Module 2: Continuous Delivery/Deployment

    • Concept of Delivery and Deployment
    • Deployment scenarios
    • Containerization and Orchestration
    • Container Security
    • Authenticity of build and dependencies
    • Secure Deployment pipeline

10:30 – 10:45 Coffee Break

10:45 – 12:30 Module 3: MLOps

    • Stages of MLOps
    • Types of MLOps tools
    • Challenges of MLOps
    • Model Context Protocol and use cases for DSO

12:30 – 13:30 Lunch Break

13:30 – 14:30 Module 4: Cloud –GenAI: LLMs and prompting

    • Connecting to an LLM
    • Advanced prompting with SW Engineering reasoning
    • LLM Frameworks
    • Agentic SWE Workflow

14:30 – 15:30 Module 5: GenAI infrastructure

    • Tradeoff Hosting Options
    • Key decision factors for the platform
    • LLM Routing, caching and embeddings
    • Cost models

15:30 – 15:45 Coffee Break

15:45 – 16:30 Module 6: Agents

    • Identities and hierarchies
    • Frameworks overview: Langgraph, CrewAI, autogen
    • Different deployment strategies
    • Agentic usage patterns

16:30 – 17:15 Module 7: Practical integration LLM into DevSecOps practices

    • Where and how to integrate genAI solutions
    • AI Functions and integration with CI/CD practices
    • Code Assistance
    • Analysis of SW Testing integration

17:15 – 17:30 | Q&A, Course Wrap-up, and Feedback Collection
Instructor Hasan Yasar, Carnegie Mellon SEI

Biography

 Hasan Yasar is the Technical Director of the Continuous Deployment of Capability group at the Software Engineering Institute, CMU. Hasan leads an engineering group to enable, accelerate and assure Transformation at the speed of relevance by leveraging, DevSecOps, Agile, Lean AI/ML, and other emerging technologies to create a Smart and secure Software Platform/Pipeline. Hasan has more than 30 years of experience as a senior security engineer, software engineer, software architect, and manager in all phases of secure software development and information modeling processes. He is also an Adjunct Faculty member at CMU’s Heinz Collage and Software and Societal Systems where he currently teaches “Software and Security” , “Applied Distributed Systems” and “DevOps &CI”. Hasan also serves various IEEE/ISO, The Open Group and NIST standard developments. He recently co-authored IEEE 2675 DevOps standard, while working on IEEE 828 configuration management, IEEE 982.1 Software Reliability, ISO Wkg 29 Agile, and DevOps standard development.”

Recommended Prerequisites

 Basic experience in developing systems using any programming language such as Python, C#, Java or C++. Basic knowledge of SDLC, Understanding of Agile & DevSecOps common practices

What can Attendees Expect to Learn
    • Learn and discover LLM and use cases for SDLC.
    • Understand DevSecOps ecosystem and its benefits for the AI solution development.
    • Lean how to apply DevSecOps practices to GenAI to make it more robust
    • Gain understanding for deploying and monitoring systems via the integration of LLM and DevOps
    • Understand to add right guardrails to integrate GenAI to develop and deploy solution securely

JOIN OUR EMAIL LIST