Browse All Sessions
FREE Theatre

Optimizing the Developer DevSecOps Experience for Embedded Systems

Mark Hermeling Mark Hermeling
27:12
Theatre

Optimizing the Developer DevSecOps Experience for Embedded Systems

Mark Hermeling
27:12 EOC 2025
Mark Hermeling

Register Free to Watch

27:12

About This Session

Providing software developers with flexible, fast workflows in which they receive the information they need at the time they need it is crucial, especially in embedded systems.

Embedded systems have strict security, safety, and quality standards to adhere to. Building guidance for these standards into the workflow makes developers more efficient, allows them to learn as they go, and ultimately reduces risk while helping the team meet deadlines.

These workflows include static and dynamic testing, testing on hardware, server-based and local build options, as well as hardware-based debug workflows.

GitLab has extensive support to automate all these actions, which is what we’ll demonstrate during this presentation.

  • Drive all actions through an IDE (VS Code)
  • Use Merge Requests to track all actions
  • Use AI to automate common programming tasks
  • Use Security Policies to drive security fixes before merges
  • Find deep security findings and remediate them easily using CodeSonar
  • Automate testing on hardware in a remote hardware lab

This in-workflow pipeline automation saves engineers many hours per month, allowing them to spend more time building secure and safe software.

All artifacts used during this presentation are publicly available, and links will be provided.

About Mark Hermeling

Mark Hermeling
Mark Hermeling, MSc Mark has 25 years of experience in software development tooling, operating systems, virtualization and networking technology in safe and secure, embedded and real-time systems. He has worked on projects building automotive, networking, aerospace and defense and industrial devices in North America, Europe and Asia. As VP of Global Solutions Engineering at CodeSecure (formerly GrammaTech), Mark manages a team that covers the last mile in assisting CodeSecure customers to improve their safety and security posture, ranging from topics around software develop lifecycle to third party vulnerability and risk management and software bill of materials. Prior to joining CodeSecure, Mark worked for Wind River Systems (an Intel Corporation subsidiary), Zeligsoft and IBM Rational. He holds a Master of Science degree in Computing Science from Eindhoven University of Technology.

About CodeSecure

At CodeSecure, we’re on a mission to protect everyone – everywhere there’s code. We provide innovative products that effectively and efficiently find critical software vulnerabilities protecting them from hackers. Because when code is protected, nation’s defenses and our customer’s products are more secure.
Visit CodeSecure

More Free Sessions

Talk

How to get started with Arm Cortex-M55 software development

Christopher Seidl
Demo

Otii Arc – Power Analyzer, UART Sync, Power Supply
Theatre

Debugging Embedded Devices at Scale: Effective Techniques for Diagnosis and Resolution

Tyler Hoffman
Talk

Continuous Software Improvement with IoT Device Monitoring and Visual Trace Diagnostics

Dr. Johan Kraft

Title

Message