Loading…

The Open Web Application Security Project (OWASP) Los Angeles Chapter is teaming up with the Orange County, San Diego, SF Bay Area, and the Inland Empire chapters to bring you the FIFTH Annual AppSec California. The event is a one of a kind experience for information security professionals, developers, and QA and testing professionals, as they gather at the beach from around the world to learn and share knowledge and experiences about secure systems and secure development methodologies.

One and Two-day training sessions on various subjects by expert trainers kick off the conference on January 28th. World renown speakers follow on days three and four.

There will be four concurrent tracks throughout the day on both January 30 and 31, addressing a variety of topics to enhance knowledge.

Tuesday, January 30 • 10:45am - 11:35am
The Best Flaw Didn't Make Into Production

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Abstract
Security practitioners - the Sisyphus of information technology. We stand with a huge mass of developers creating new content every day, and we trust the training that we offer them, our own abilities as subject matter experts, in the tools we create and the methods we suggest. And still, the application security debt keeps growing and flaws we thought were already well-understood keep reappearing. This talk proposes yet another way of working with developers, testers and architects to address the gaps between training and coding, design and implementation, security testing and making sure that the security practitioner has enough timely information to be able to influence development rather than run after fixing the next version. These are supported by observation and interaction with many distinct development teams, feedback from peer practitioners, and pilot tests.

Speakers
avatar for Izar Tarandach

Izar Tarandach

Lead Product Security Architect, Autodesk Inc.
Izar Tarandach is Lead Product Security Architect at Autodesk inc.. Prior, he was the Security Architect for Enterprise Hybrid Cloud at Dell EMC, for long before a Security Consultant at the EMC Product Security Office. With more years than he's willing to admit to in the information... Read More →



Tuesday January 30, 2018 10:45am - 11:35am
Garden Terrace Room