Web App and API Security Needs to Be Modernized: Here’s How – Sean Leach – RSA21 #1
The truth is, most web app and API security tools were designed for a very different era. A time before developers and security practitioners worked together, before applications were globally distributed and API-based. But attackers are developers too, and they aren’t bogged down by the limitations of legacy solutions. It’s never been more clear that it’s time for a change. Sean will outline new rules for web application and API security that respect the way modern applications are built.
https://www.fastly.com/blog/the-new-rules-for-web-application-and-api-security
This segment is sponsored by Fastly.
Visit https://securityweekly.com/fastly to learn more about them!
Sean is the Chief Product Architect at Fastly, where he focuses on building and scaling products around large scale, mission critical infrastructure. He was previously VP, Technology for Verisign, where he provided strategic direction along with product and technical architecture and was a primary company spokesperson. Sean was previously CTO of name.com, a top 15 domain registration and web hosting company as well as a Sr. Director at Neustar.
He holds a BS in Computer Science from the University of Delaware. His current research focus is on DNS, DDOS, Web/network performance, Internet infrastructure and combating the massive internet security epidemic.
A “Great Equalizer”, Until It Isn’t: Regional Security in a Global Pandemic – Allie Mellen – RSA21 #1
In security, regions can impact available technical capabilities, manpower, and other resources. This has been felt more than ever in African countries given the dramatic shift to remote work during the pandemic. Allie's talk with Kerissa Varma dissects and compares regional responses to COVID from security teams in 17 different countries in Africa, North America, Asia, and the Middle East.
Segment Resources:
https://www.rsaconference.com/usa/agenda/full-agenda#q=allie%20mellen&sort=%40eventstart%20ascending
Allie Mellen is the author of Code War: How Nations Hack, Spy, and Shape the Digital Battlefield. She is a leading industry analyst who advises the Global 2000 on cybersecurity policy and practice, with a focus on detecting and responding to nation-state attacks. She is a featured speaker at many leading security conferences, including RSA Conference, Black Hat, SANS events, and others. Her insights are frequently featured in top business and technology outlets such as NPR, The Wall Street Journal, and The Washington Post.
API Security – Sandy Carielli – RSA21 #1
We are seeing API related breaches almost weekly - Experian, John Deere, Peleton, Starbucks, etc. Why are we seeing so many of these, and how do we need to change our thinking to improve API security? What makes this difficult?
Sandy advises security and risk professionals on application and product security, with a particular emphasis on the collaboration among security and risk, product management, application development, operations, and business teams. Her research covers topics such as proactive security design, protecting modern and emerging application architectures, protection of applications in production environments, and embedding security throughout the product lifecycle.
Culture Matters – Put People At The Heart Of Security – Jinan Budge – RSA21 #1
Whether the human element means creating a toxic-free environment for your people, navigating the maze of organizational politics and detractors, building the human firewall, or marketing security: people and culture are central to security. We will discuss some tips to help listeners focus their people vision and approach team, organizational and security culture change strategically.
Jinan leads Forrester’s security and risk research in Asia Pacific, focusing on enabling chief information security officers (CISOs) and technology executives to lead a high-performing security organization and culture. She focuses on ensuring that cybersecurity teams not only attract but also retain the best talent, and she brings a local and global perspective and cultural lens to her research and practice. Previously, Jinan spent several years as director of cyber strategy at Transport for NSW and a similar role with Qantas Airlines. Jinan holds two bachelor’s degrees in science and commerce from the Australian National University.
