Workshop - Holistic Info-Sec for Web Developers

Kim Carter
Workshop Source Book Series

Abstract

Kim will take the students on an exploration into an insightful set of steps he has learned, from an architectural, engineering and penetration testing perspective. Based on the content of volume 0 & 1 of Kim’s new book “Holistic Info-Sec for Web Developers” we will walk through how your project Scrum Teams can bring the specialized process of penetration testing, usually performed at or after the release phase, or not at all, to right up front, augmenting your Scrum process within each and every Sprint, with a collection of processes, practises and tools that have proven their value in the field of information security. Kim will walk the students through the Sensible Security Model (SSM) threat modelling process with examples in areas such as physical, people, VPS, network, cloud and web applications.

Date
Jul 23, 2016 10:00 AM — 12:00 PM
Event
Hackers On Planet Earth (HOPE) conference NYC
Location
New York City, USA

The eleventh hope conference
The eleventh hope conference

workshop conference hacking application-security csrf cloud-security cybersecurity dev-ops dev-sec-ops holistic-info-sec-for-web-developers information-security infosec networking network-security owasp people-security physical-security sanitisation security security-weaknesses software-security sql-injection ssh vps vps-security web xss
Kim Carter
Kim Carter
Technologist / Engineer, Information Security Professional

Technologist / Engineer, Information Security Professional, Entrepreneur and the founder of BinaryMist Ltd and PurpleTeam-Labs. Ex OWASP NZ Chapter Leader of eight years. Certified Scrum Master. Facilitator, mentor and motivator of cross functional, self managing teams. With a solid 20 years of commercial industry experience across many domains.