Reframing Application Security for Modern Apps and Tighter Budgets
Liav Caspi & Jason Chan
About this talk
AppSec programs have long relied on a traditional approach, using gates, reviews, and scanning tools to achieve security and compliance. But a new era is here that calls for securing modern cloud apps, SaaS, DevOps infrastructure, and the rapidly changing environments that surround them. Many organizations struggle to shed the traditional model, delaying the reframing of AppSec that is required to both ensure modern application security and integrity and keep up with the ever-increasing velocity the business demands.
What does it take to adopt a modern AppSec approach within today’s budget realities? It starts with gaining visibility and business context within rapidly changing development environments and ensuring limited resources are applied to the highest risk issues. Seeing the whole picture allows for effective security prioritization and remediation, partnerships with security champions, drives accountability and allows teams to do more with the same budget.
Join us to hear from Jason Chan, ex-CISO of Netflix, and Legit Security CTO Liav Caspi, to learn:
• How to obtain real-time visibility and security posture awareness over rapidly changing applications and development environments.
• How to gain valuable security context to cut through the noise and prioritize efficiently.
• Methods to identify security tool redundancies and leverage existing scanners to save cost and maximize value
• How developer engagement techniques such as security champion programs, paved roads, and security metrics can improve security and AppSec productivity.
ISSA is the community of choice for international cybersecurity professionals dedicated to advancing individual growth, managing technology risk and protecting critical information and infrastructure.…