Presented at
LocoMocoSec 2018,
April 6, 2018, 11 a.m.
(40 minutes).
Patching programs are a part of every organization; Patch-Tuesday rolls around and the IT staff tests and pushes out patches for Windows. Unfortunately, when it comes to application dependencies most organizations are woefully behind – yet the bad guys have been stepping up their game. This talk will cover why the problem exists and what organizations can do to improve. We will also discuss techniques to limit exposure between security patch release and deployment.
Presenters:
-
Jeremy Long
Jeremy Long is a principal engineer at a large financial institution. He specializes in securing the SDLC via secure coding training, security requirements and coding standards, tooling for early identification in build pipelines, etc. He has a deep understanding of static analysis and has created and customized automated tools to both decrease assessment time and increase quality. Jeremy is the founder and project lead for the OWASP dependency-check project.
Links:
Similar Presentations: