Builders, Breakers, and Defenders – A Day of Application Security

Building applications is an iterative, feedback driven process. Building secure applications requires thinking about security in every phase of the software lifecycle from the initial architecture through pushing updated versions into production.
The first part of the day will empower a secure application design by reviewing the architecture of a brownfield application, building a threat model, determining where the application is vulnerable and fixing issues before they show up as a headline news story.
We will then learn about techniques and tools that attackers use to compromise applications and how to use those tools to test your application before it goes into production.
Attendees will then build on that knowledge to ensure that the application stays secure by implementing automated security analysis tools and testing into the DevOps toolchain. Come for an in depth session on adding security tooling to your continuous integration and deployment pipeline.