Explore a comprehensive conference talk from DefCamp 2018 on building application security with limited resources. Learn about the challenges of implementing security measures, understand the stages of application security maturity, and discover practical strategies for threat modeling and inception checklists. Gain insights into attainable goals, funding requests, and the use of commercial tools. Dive into the requirements phase, training considerations, and essential checklists. Conclude with a demonstration of SonarQube and engage in a Q&A session to deepen your understanding of cost-effective application security practices.
Building Application Security With 0 Money Down - DefCamp - 2018
Overview
Syllabus
Introduction
What is Interlinks
Why is it so difficult
Coming of age stages
Application security process
First attainable goal
Threat modeling
Inception checklist
Request funding
Maturity goals
Commercial tools
Requirements phase
Training
Checklist
Conclusion
Tools
SonarQube demo
Questions
Taught by
DefCamp
