Overview
Syllabus
Intro
Im not just a consultant
We are not perfect
Youre the wrong conference
Dream state
Security is really freaking hard
Why we became developers
Lets build the dream
People take security seriously
Youre in the wrong job
Whats in this talk
Common misconceptions
Web Application Firewall
Compliance
What is Continuous Security
What is Software
What is Security
Choose Your Own Adventure
Principles of Getting There
Boring jobs
Things to automate
Autonomous
accountability
integration
repeatable
work together
finally scalable
we need to take it
lets start with design
Security persona
Threat assessment
Design
Testing
Getting started
Things you can do
DevOps Defensive Toolkit
SSL Labs
What happens when your company gets this
Preparing for incidents
Safety
Questions
Taught by
NDC Conferences