Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]

---

S'abonner au fil RSS global de la revue de presse

---

Présentation : How many applications are in your company s portfolio What s the headcount for your AppSec team Whatever your situation is, I am sure the numbers are not in your favor. Its not time to find a new career, it's time to up your game. This talk will cover how to take your small merry band of AppSec professionals and scale it up to a virtual army. By taking the best of DevOps, Agile and CI CD, you can iteratively up your AppSec game over time and begin your ascent out of the security hole you are in. The talk covers real world experiences running AppSec groups at two different companies. Rackspace with approximately 4,000 employees and Pearson with 40,000 . Both have an international presence and far more apps and developers that AppSec staff. The talk covers the key principles to speed and scale up AppSec programs using an AppSec Pipeline as well as practical examples of these practices put into use. Start early and begin to buy down the technical security dept which feels inevitable with more traditional AppSec program thinking. Matt Tesauro Founder, Infinitiv Matt has been involved in the information technology and application development for more than 15 years. He is currently the Senior Software Security Engineer at Pearson. He is also an Adjunct Professor for the University of Texas Computer Science department teaching the next generation of CS students about Application Security. Previously, he was the Senior Product Security Engineer at Rackspace. Prior to joining Rackspace, Matt spent time as a application security consultant, spent several years as the appsec guy at a government agency and started out as a web app developer. Matt's focus has been in application security including testing, code reviews, design reviews and training. His background in web application development and system administration helped bring a holistic focus to Secure SDLC efforts he's driven. He has taught both graduate level university courses and for large financial institutions. Matt has presented and provided training a various industry events including DHS Software Assurance Workshop, Agile Austin, AppSec EU, AppSec US, AppSec Academia, and AppSec Brazil. Matt is currently active with the OpenStack Security Group OSSG and a fomer board member of the OWASP Foundation. He is highly involved in many OWASP projects and committees. Matt is the project leader of the OWASP OpenStack Security project - a project to bring the OpenStack and OWASP communities together. He has also run the OWASP WTE Web Testing Environment since 2008 which is the source of the OWASP Live CD Project and Virtual Machines pre-configured with tools and documentation for testing web applications - all running on Linux of course . Industry designations include the RHCE, Linux , Certified Information Systems Security Professional CISSP and Certified Ethical Hacker CEH . Matt Tesauro has a B.S. in Economics and a M.S in Management Information Systems from Texas A M University. For More Information Please Visit - https 2016.appseccalifornia.org

Les mots clés de la revue de presse pour cet article : california





Les derniers articles du site "SecurityTube.Net" :

- TROOPERSCON - Crypto code the 9 circles of testing
- TROOPERSCON - Towards a LangSec Aware SDLC
- TROOPERSCON - Deep dive into SAP archive file formats
- TROOPERSCON - Thanks SAP for the vulnerabilities. Exploiting the unexploitable
- TROOPERSCON - An easy way into your multi-million dollar SAP systems An unknown default SAP account
- TROOPERSCON - One Tool To Rule Them All
- TROOPERSCON - Mind The Gap - Exploit Free Whitelisting Evasion Tactics
- TROOPERSCON - The Chimaera Processor
- TROOPERSCON - Lets Play Hide and Seek in the Cloud
- TROOPERSCON - Planes, Trains and Automobiles The Internet of Deadly Things

---

S'abonner au fil RSS global de la revue de presse

---