DevSecCon London is thrilled to announce its upcoming October event, where industry-leading experts and enthusiasts will come together to explore the latest trends and innovations in the world of DevSecOps. Mark your calendars for an engaging and enlightening experience!
- In-person: Snyk London office, 97 Hackney Rd, London E2 8ET
- Remote: https://www.youtube.com/live/ul1w0I9uQG0
6:00 PM: in-person doors open
6:30 PM: Session kicks off + Live stream (Virtual viewers join in)
- The North Star: Risk-driven security by Jonny Tyers
- Weaving Application Security’s Scale by Elie Saad
8:00 PM: That’s a wrap, more drinks and networking for those attending in person
9:00 PM: In-person event ends, doors closed
The North Star: Risk-driven security by Jonny Tyers
In this session I’ll show how to get ahead of the curve on security. I’ll show our audience how to find risks and vulnerabilities in the code they write and the architectures they build.
I’ll introduce risk-first threat modelling, using business risk as the north star to drive out the threats that really matter.
The end result? A clear understanding of your most important weaknesses and where to focus on next, and a model that you can take to anyone in the business to get buy-in, funding, and support for your risk-reduction efforts.
Threat modelling is quick, easy to pick up, and provides lasting security benefits for your team and your systems, and is practical to introduce at any point in the lifecycle of a system.
At the end of this session the audience will be equipped with a modern, flexible and simple method for finding and reducing security risks, connected to the business and easily explainable to other teams, and they’ll know how they can get started.
Weaving Application Security’s Scale by Elie Saad
Application Security has been on a high growth journey with various brandings and ways of working. A challenge that is always encountered is the scaling problem across an organization. Companies, as expected, go through the consultants shift, turning AppSec engineers into mise-en-place subject matter experts, detaching them from engineering and other departments’ dynamics. In this talk, I’ll discuss a different version of scaling, a version where AppSec acts as the enabler for the wider business through weaving partnerships. Before getting to this, the talk will take the audience through AppSec’s growth journey.
Join the Community!
If you haven’t joined the Discord community, please do so! You can find us on Discord at: https://devseccon.io/discordcommunity