A Road to Achieving AppSec maturity using a Modular Framework as Guidance
who: Steve Esler
when: Sat, 13 Nov 2021 16:45:00 +1300
where: The Michael Fowler Centre
The talk aims to Illustrate a potential framework to take you on a cyber journey from zero AppSec maturity to some and beyond. By illustrating possible paths to maturity by uplifting defensive tools, techniques, controls of all the types and processes to achieve an improvement in integrating security into stages of the Secure Systems Development Lifecycle. It aims to go beyond the traditional approach of DevSecOps but also encompasses this angle. It offers a proposal for a modular contruct to fit with the inevitable smorgasbord of differing methods of developing systems/applications and laces in Security Activities that align to OWASP and industry current best practices.
Form the UK originally came to NZ Jan 2021 - passionate about AppSec and building devices for Red Teaming on the side.