Security Observability 101 - Thinking Inside the Box

Explore the concept of "security observability" in this 51-minute OWASP Foundation talk by Jeff Williams, Cofounder and CTO of Contrast Security. Dive into the challenges of securing software as a black box and learn how to leverage the free and open-source Java Observability Toolkit (JOT) project for powerful runtime instrumentation without coding. Discover techniques for analyzing security defenses, identifying complex vulnerabilities, creating custom sandboxes, and enforcing policy at runtime. Gain insights into how security observability can foster harmony between Dev, Sec, and Ops teams, enabling high-velocity value delivery while maintaining robust security measures.