YoVDO

Lessons in Securing Internal Apps - AppSecCali 2019

Offered By: OWASP Foundation via YouTube

Tags

Application Security Courses Authorization Courses Security Engineering Courses Web Application Firewalls Courses Content Security Policy Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore strategies for securing internal applications in this 44-minute conference talk from AppSecCali 2019. Learn how to tackle the unique challenges of locking down sensitive internal tools, dashboards, and control panels across diverse technical stacks. Discover a scalable approach to internal application security, including establishing a useful mental model, implementing authentication and authorization basics, deploying Content Security Policy, leveraging SameSite cookies for entry point regulation, utilizing Web Application Firewalls for detection and response, and using internal apps to train new security engineers. Gain insights from both successful and unsuccessful approaches as Hongyi Hu, Security Engineer at Dropbox, shares valuable lessons and humorous anecdotes from his experience leading the Application Security team.

Syllabus

AppSecCali 2019 - The Call is Coming From Inside the House: Lessons in Securing Internal Apps


Taught by

OWASP Foundation

Related Courses

Security Event Triage: Revealing Attacker Methodology in Web Application Events
Pluralsight Securing Applications in Microsoft Azure
Pluralsight AWS Administration: Security Fundamentals
LinkedIn Learning AWS Certified Solutions Architect - Associate (SAA-C02): 7 Application Deployment
LinkedIn Learning Azure Administration: Load Balancers and Application Gateways
LinkedIn Learning