- This event has passed.
The ten things I wish every developer knew about application security
July 25 @ 6:30 pm - 8:30 pm
Are your web applications as secure as they should be? How do they fair against the OWASP Top 10, the list of the most dangerous application risks? You almost certainly suffer from one or more of the OWASP Top 10 problems in your web applications.
There is an answer for each of the OWASP Top 10 application risks. Enter the OWASP Proactive Controls or the ten things I wish every developer knew about application security. We’ll explore input validation, contextual output encoding, and secure database access, to name a few. For each item in the proactive controls, we’ll map to the OWASP Top 10 to understand the risk, and then discuss the control by defining it and exploring how to use it in your web applications.
You’ll leave this session with new ideas about how to secure your web applications and a greater awareness of the risk to your fleet of web applications.
Bio: Chris Romeo is CEO and co-founder of Security Journey where he creates and deploys security culture influencing training, consults, and speaks. His passion is to bring security culture change to all organizations large and small through the creation and design of gamified security education. He was the Chief Security Advocate at Cisco for five years, where he empowered engineers to shift security left in all products at Cisco and led the creation of Cisco’s security belt program. Chris has twenty years of experience in security, holding positions across the gamut, including application security, penetration testing, and incident response. Chris holds the CISSP and CSSLP certifications. For more information, see https://www.linkedin.com/in/securityjourney/