Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Better Connected

Laura Bell
September 02, 2015
Technology
0
52

Better Connected

Lightning talk presented at Microsoft Ignite NZ 2015 by Laura Bell

Laura Bell

September 02, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
ladynerd
0
220
Hackcon 11 - Protecting our people
ladynerd
0
220
Security in a container based world
ladynerd
0
130
Securing Microservice Architectures
ladynerd
2
340
Continuous Security
ladynerd
3
1.1k
Automated Human Vulnerability Scanning with AVA
ladynerd
3
2.6k
Blindsided by security
ladynerd
0
79
Practical tools for privacy audit
ladynerd
0
170
For the greater good? Open sourcing weaponisable code
ladynerd
1
300

Other Decks in Technology

See All in Technology
コンテンツを支える 若手ゲームクリエイターの アートディレクションの事例紹介 / cagamefi-game
cyberagentdevelopers
PRO
1
130
Product Engineer Night #6プロダクトエンジニアを育む仕組み・施策
hacomono
PRO
1
470
Datachain会社紹介資料(2024年11月) / Company Deck
datachain
3
16k
Shift-from-React-to-Vue
calm1205
3
1.3k
【技術書典17】OpenFOAM(自宅で極める流体解析)2次元円柱まわりの流れ
kamakiri1225
0
220
Forget efficiency – Become more productive without the stress
ufried
0
150
visionOSでの空間表現実装とImmersive Video表示について / ai-immersive-visionos
cyberagentdevelopers
PRO
1
110
Amazon_CloudWatch_ログ異常検出_導入ガイド
tsujiba
4
1.6k
生成AIとAWS CDKで実現! 自社ブログレビューの効率化
ymae
2
330
よくわからんサービスについての問い合わせが来たときの強い味方 Amazon Q について
kazzpapa3
0
220
独自ツール開発でスタジオ撮影をDX!「VLS(Virtual LED Studio)」 / dx-studio-vls
cyberagentdevelopers
PRO
1
180
Automated Promptingを目指すその前に / Before we can aim for Automated Prompting
rkaga
0
110

Featured

See All Featured
Designing Experiences People Love
moore
138
23k
Code Reviewing Like a Champion
maltzj
519
39k
Become a Pro
speakerdeck
PRO
24
5k
Building Adaptive Systems
keathley
38
2.2k
Git: the NoSQL Database
bkeepers
PRO
425
64k
What's new in Ruby 2.0
geeforr
342
31k
For a Future-Friendly Web
brad_frost
175
9.4k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
No one is an island. Learnings from fostering a developers community.
thoeni
19
3k
Facilitating Awesome Meetings
lara
49
6k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
92
16k
How GitHub (no longer) Works
holman
311
140k

Transcript

  1. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Better connected

  2. this  is  a  story  about  security

  3. PEOPLE   TECHNOLOGY   PROCESS   CULTURE   ORGANISATION  

  4. None
  5. None

  6. 87  ac=ve  usernames  and  passwords • 7  Twi6er  accounts • 1  Facebook

    28  second  factor  authorisa=on  tokens • 22  applica=on  based • 6  SMS  code  based • 280  backup  codes Mul=ple  encryp=on  keys  &  certs •  PGP,  S/Mime,  SSL Mul=ple  financial  iden==es • 7  taxa=on  accounts • 6  na=onal  banking  iden=fiers • 3  payment  processors
  7. None
  8. None

  9. PART  OF  THE  PROBLEM

  10. 93%  organiza=ons  use  poor  quality,   shared  passwords  and  do

     not  change  them   when  people  leave

  11. 80%  organiza=ons  use  produc=on  data  in   test  environments

  12. We  don’t  understand  our  own   environments  and  technology  suites

  13. None

  14. PART  OF  THE  SOLUTION

  15. SORT  OUT  THE  BASICS. NO  EXCUSES PASSWORD   MANAGEMENT BACKUPS

    ROLES PERMISSIONS LANGUAGE PROTECTING   PRODUCTION   DATA

  16. DATA  IS  A  PRIVILEGE …  store  less

  17. WORDS  ARE  EXPENSIVE say  less,  communicate  more

  18. YOU  CANNOT  REMOVE  RISK by  making  things  more  complex

  19. EXPOSE  YOUR  VULNERABILITY focus  on  visibility  and  survival

  20. EVERYBODY EDUCATED EMPOWERED ACCOUNTABLE

  21. we  live  in  a  connected  world

  22. None

  23. go  protect  it  together

  24. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Questions?