Skip to main content

Secure Development Lifecycle Applied

120-minute Workshop

Incorporate security activities in your current workflow from idea to production, step by step

Deep Dive session

Timetable

2:45 p.m. – 4:45 p.m. Wednesday 26th

Room

Room D5 - Track 8: Security Testing Deep Dive

Other Security Testing

Audience

Testers, quality engineers, developers, security engineers, AppSec

Required

Laptop with internet connection, having Docker and an API client installed

Key-Learnings

  • Learn fundamental security concepts to apply when developing applications
  • Gain hands-on experience with approaches you can directly integrate in your development lifecycle
  • Understand how you can iteratively make your product more secure

How to Make Things a Bit More Secure than Yesterday Every Day

Building valuable solutions is a complex endeavor that requires a breadth of knowledge. That not being enough, we’re also getting asked to build secure solutions in a secure way - yet what does that even mean? How do we incorporate such a vast area of expertise into our everyday workflows?

In this hands-on workshop, I will introduce you to core security concepts, like the CIA triad or defense in depth - and how we can apply them in everyday work. Based on a practical example, we will go through the development lifecycle with security in mind. You will learn about threat modeling to uncover risks early on, secure coding principles to bake security in, security testing approaches to make informed decisions depending on your risk appetite, and ways of detecting potentially malicious activity to protect against. Interactive exercises at each step will let you experience how security can neatly fit with what you’re already doing without adding artificial gates.

Whether you want to keep your system secure or get a neglected one back in shape, this session is for you. Join us to gain fundamental security knowledge, hone your security skills, and get tactical advice to secure your development lifecycle. Let’s make things a bit more secure than yesterday every day!

Related Sessions

Tue, Nov 25 • 7:45 a.m. – 8:30 a.m.
Room F1+F2+F3 - Plenary

Active Session

Other

Virtual Pass session
Mon, Nov 24 • 5:15 p.m. – 6:15 p.m.
Room F1+F2+F3 - Plenary

45-minute Keynote

Mental Health & Self Care Other