Insecurity in Information Technology - Impact on Application Security
USENIX Enigma Conference via YouTube
Overview
Explore the impact of personal insecurities on application security in this 20-minute conference talk from USENIX Enigma 2018. Delve into the challenges faced by software developers and IT security teams, examining how leadership decisions and management practices can inadvertently create vulnerabilities in software and IT products. Learn about the causes and effects of insecurities and behavioral influencers in the workplace, and discover specific, implementable solutions to improve security throughout the entire Software Development Life Cycle (SDLC). Gain insights on creating effective programs, governance, and policies that promote collaboration between developers and security teams, ultimately leading to the development of high-quality, secure software. Walk away with practical strategies to establish clear expectations, implement partnership models, and foster a culture of continuous learning and improvement in application security.
Syllabus
Intro
Insecurity
What does security do
Feelings of job insecurity
Processes
Application Security
Partnership Model
Push Left
Validate Results
Training
Free Training
Job Shadowing
Resources
Create Standards
Security Tools
Cost
ASP
Blameless Postmortem
Example at Work
Summary
Taught by
USENIX Enigma Conference