SaaS - Security as a Secondthought

Presented at Kawaiicon 2 (2022) Rescheduled, July 2, 2022, 9:30 a.m. (30 minutes).

Software as a service companies move so fast that they sometimes forget about the security basics. There is a common trend of ditching traditional corporate IT environments for unmanaged endpoints and a pile of SaaS services.

In order to continue to innovate you must adopt new technologies, languages, tools, ideas at some point. But security controls are often tightly coupled to the existing stack, and left behind with new development. How do we encourage continuous improvement while staying on top of security?

This talk presents an open source tool to help define your collective minimum security goals. Empower teams to design on their own with security in mind. Resulting in a pragmatic security approach for modern fast moving companies.


Presenters:

  • Jeremy Stott
    Jeremy is a software security engineer with a background in computer systems engineering, building firmware for whiteware, wearables, marine and agtech. After opening Pandora's security box, he has worked at a number of SaaS companies securing cloud infrastructure, building security tools, training, and getting people excited about security.

Links:

Similar Presentations: