Introduction to inner-loop security. Shifting left, but better.
Presented by: Josh Wallace
We can barely make it through an AppSec talk or article without hearing about the wonders of “shift left” and how it is the key to solving all of our security problems. Every intro to AppSec talk starts with the cost savings and return on investment associated with discovering security defects...
Format: General SessionLevel: IntermediateJakarta EE 10 is Coming Your Way!
Presented by: Ivar Grimstad
Jakarta EE 9 lowered the barriers of entry and established a foundation for future innovation paving the way for Jakarta EE 10. ...
Format: General SessionLevel: IntermediateKeeping your Kubernetes Cluster Secure
Presented by: Gene Gotimer
Many organizations are shifting to containers and Kubernetes, and that move means learning new ways to secure their environments. Kubernetes clusters have to be hardened at different levels. We have to consider the nodes where the Kubernetes control plane is running. We also need to secure the...
Format: General SessionLevel: IntermediateMistaken Identity: SAML and OAuth Security
Presented by: Wolfgang Goerlich
While everyone was focused on credentials, criminals quietly moved to exploiting mistakes in identity. You have a long and strong password? That’s sweet. You’re using all three types of multi-factor? That’s cute. It won’t matter when the adversaries compromise identity protocols after...
Format: General SessionLevel: IntermediateRealizing The Benefits Of Container DevSecOps With AWS
Presented by: James Strong
Attendees will learn how to set up, harden, & secure a container pipeline in AWS in this workshop using no servers for that pipeline. Please attend, If you’re interested in integrating security and compliance into a container pipeline to realize the benefits of DevSecOps. We will be using these...
Format: PreCompilerLevel: Intermediate