Coding Secure Code - Best Practices, Advice for Writing Secure Code

Discover essential security principles and best practices for writing secure code in this 45-minute conference talk from the RSA Conference. Explore the challenges of secure coding, learn about user-focused security, and understand the importance of a business-driven approach to cybersecurity. Gain insights into technology adoption, cloud security, and the value of learning programming languages like PowerShell. Delve into topics such as security testing, metrics collection, open-source tools, and vulnerability management. Enhance your understanding of emerging technologies, API security, and risk assessment to become a more effective security practitioner in today's rapidly evolving threat landscape.

Introduction
Agenda
Disclaimer
Why is it hard
Vendors
Bingo
Technology Adoption
Business File
Human Side
Technology
Budget
People are stupid
Userfocused security
Culture
Use Cases
Frustration
Its about money
Its about insecurity
One assumption
Businessdriven approach
Learn your business
Understanding your model
Public Cloud vs Data Center
Learn to have a business conversation
Secure the areas tied to business value
Being a firstclass citizen
Understand your business
Learn the code
Learn PowerShell
Increase Employee Value
Hire Developer
What do you need
Writing code
scaffolding
make security invisible
business language
build security
Jenkins
Security Tests
Collect Metrics
Technology Convergence
Open Source
Vulnerability Scanners
ThirdParty Vendors
APIs
Why I love APIs
API Volume
Community
Emerging Technology
Vulnerability Management
The RAF Space
apt testing
pen testers
risk assessment visibility
opensource products
ways to apply
no questions