Discover five essential tips for implementing Mobile DevSecOps in this 30-minute talk by Brian Reed. Learn about the mobile app economy, security challenges, and fundamental differences between web and mobile development. Explore strategies to establish effective mobile security training programs, understand the mobile attack surface, and leverage OWASP Mobile Project resources. Gain insights on automating mobile binary AppSec testing, integrating it into your workflow, and injecting security throughout the toolchain. Understand how mature DevOps teams automate compliance to build secure mobile apps used by millions.
Mobile DevSecOps: 5 Tips for Building Secure Apps Used by Millions
Overview
Syllabus
Intro
The World's Mobile App Economy
Mobile Security Challenges by the Numbers
Establish Mobile Security Training Program
Web & Mobile are Fundamentally Different
Understand the Mobile Attack Surface
Leverage OWASP Mobile Project
Automate Mobile Binary AppSec Testing
Integrate Automated Mobile Binary AppSec Testing
Inject Security Throughout the Toolchain
Mature DevOps Teams Automate Compliance
Taught by
OWASP Foundation
