Explore the future of application security in this 49-minute LASCON conference talk. Delve into the challenges faced by AppSec teams as they struggle to keep pace with rapidly expanding engineering departments. Examine whether it's feasible to hire enough security professionals to match the output of code, features, and products. Discover potential solutions to the "software security crisis," including automation, integrating security into everyone's role, and breaking down organizational walls. Learn about actionable alerts, continuous updates, code review practices, and the importance of training and security champions. Gain insights into how the traditional AppSec team structure may evolve and adapt to meet future cybersecurity demands.
The End of the AppSec Team - Future of Application Security
Overview
Syllabus
Introduction
My Background
The Future
Are we destined to fail
Size of AppSec team
Software security crisis
Automation
Security is everyones job
Security is your job
The problem with walls
Operations become code
Actionable alerts
Update all the time
Code review
Training
Security Champions
Reminder
Taught by
LASCON
