Digital Resilience Associations
РусскийРусский

The Digital Resilience Association took part in the event “Secure Development with DerSecur and Compliance Control”

18 August 2025

On August 13, 2025, representatives of the Digital Resilience Association (DRA) participated in the professional event “Secure Development with DerSecur and Compliance Control,” supported and organized by the Axoft Center for Digital Technology Expertise and Distribution.

The event was dedicated to pressing issues in ensuring software security, implementing a Secure Software Development Lifecycle (SSDLC), and applying modern tools and approaches in Application Security (AppSec).

As part of the business program, leading experts in information security and secure development delivered keynote presentations. Dan Chernov, CEO of DerScanner, gave a talk on “AI Agents in AppSec: Security Without Expanding the Team,” presenting DerScanner solutions for automating vulnerability detection and remediation, including the tools DerTriage and DerCodeFix. Special attention was paid to enhancing security processes without increasing the size of development teams, but instead through the use of digital assistants.

Experts from Rakasta showcased a comprehensive approach to implementing SSDLC, focusing on:

  • Security requirements management methodologies;
  • Threat modeling;
  • Process maturity analysis;
  • Integration of SAST, SCA, DAST, and Fuzzing tools into CI/CD pipelines;
  • DevSecOps practices and securing containerized solutions.

It was emphasized that effective security is achieved not only through technology but also through mature processes, strong internal culture, and regular staff training.

The event gathered representatives from government institutions, the banking sector, mobile operators, and leading IT companies in Kyrgyzstan, ensuring a high level of professional dialogue and knowledge exchange among key stakeholders.

The Digital Resilience Association supports initiatives aimed at strengthening the expert community, raising awareness, and fostering professional connections between IT sector representatives and cybersecurity specialists. Participation in such initiatives enables the timely monitoring of industry trends and the integration of best practices into the national context.

The Association expresses its gratitude to Axoft for the invitation and the high level of event organization, as well as to the speakers for their insightful presentations and professional exchange of expertise.