Web App and API Security Needs to Be Modernized: Here’s How – Sean Leach – RSA21 #1
The truth is, most web app and API security tools were designed for a very different era. A time before developers and security practitioners worked together, before applications were globally distributed and API-based. But attackers are developers too, and they aren’t bogged down by the limitations of legacy solutions. It’s never been more clear that it’s time for a change. Sean will outline new rules for web application and API security that respect the way modern applications are built.
https://www.fastly.com/blog/the-new-rules-for-web-application-and-api-security
This segment is sponsored by Fastly.
Visit https://securityweekly.com/fastly to learn more about them!
Sean is the Chief Product Architect at Fastly, where he focuses on building and scaling products around large scale, mission critical infrastructure. He was previously VP, Technology for Verisign, where he provided strategic direction along with product and technical architecture and was a primary company spokesperson. Sean was previously CTO of name.com, a top 15 domain registration and web hosting company as well as a Sr. Director at Neustar.
He holds a BS in Computer Science from the University of Delaware. His current research focus is on DNS, DDOS, Web/network performance, Internet infrastructure and combating the massive internet security epidemic.
A “Great Equalizer”, Until It Isn’t: Regional Security in a Global Pandemic – Allie Mellen – RSA21 #1
In security, regions can impact available technical capabilities, manpower, and other resources. This has been felt more than ever in African countries given the dramatic shift to remote work during the pandemic. Allie's talk with Kerissa Varma dissects and compares regional responses to COVID from security teams in 17 different countries in Africa, North America, Asia, and the Middle East.
Segment Resources:
https://www.rsaconference.com/usa/agenda/full-agenda#q=allie%20mellen&sort=%40eventstart%20ascending
Allie Mellen is a Forrester analyst covering security operations, nation-state threats, and the use of automation, machine learning, and AI in security tools. She has been in the technology industry for over a decade in various engineering roles: doing research at MIT, running her own engineering consultancy, and being a hacker before finally becoming a security practitioner. She now advises Fortune 500 CISOs and security teams on their detection and response practice and frequently speaks at industry-leading events and with the press.
API Security – Sandy Carielli – RSA21 #1
We are seeing API related breaches almost weekly - Experian, John Deere, Peleton, Starbucks, etc. Why are we seeing so many of these, and how do we need to change our thinking to improve API security? What makes this difficult?
Sandy is a principal analyst at Forrester advising security and risk professionals on application security, with a particular emphasis on the collaboration among security and risk, application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery lifecycle, protection of applications in production environments, and remediation of hardware and software flaws.
Culture Matters – Put People At The Heart Of Security – Jinan Budge – RSA21 #1
Whether the human element means creating a toxic-free environment for your people, navigating the maze of organizational politics and detractors, building the human firewall, or marketing security: people and culture are central to security. We will discuss some tips to help listeners focus their people vision and approach team, organizational and security culture change strategically.
Jinan leads Forrester’s security and risk research in Asia Pacific, focusing on enabling chief information security officers (CISOs) and technology executives to lead a high-performing security organization and culture. She focuses on ensuring that cybersecurity teams not only attract but also retain the best talent, and she brings a local and global perspective and cultural lens to her research and practice. Previously, Jinan spent several years as director of cyber strategy at Transport for NSW and a similar role with Qantas Airlines. Jinan holds two bachelor’s degrees in science and commerce from the Australian National University.
