Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Security survival skills (for the adventurous d...

Avatar for Laura Bell Laura Bell
April 24, 2015
Technology
120
0

Security survival skills (for the adventurous developer)

Avatar for Laura Bell

Laura Bell

April 24, 2015

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
Avatar for Laura Bell ladynerd
0
300
Hackcon 11 - Protecting our people
Avatar for Laura Bell ladynerd
0
250
Security in a container based world
Avatar for Laura Bell ladynerd
0
160
Securing Microservice Architectures
Avatar for Laura Bell ladynerd
2
370
Better Connected
Avatar for Laura Bell ladynerd
0
83
Continuous Security
Avatar for Laura Bell ladynerd
3
1.2k
Automated Human Vulnerability Scanning with AVA
Avatar for Laura Bell ladynerd
3
2.7k
Blindsided by security
Avatar for Laura Bell ladynerd
0
140
Practical tools for privacy audit
Avatar for Laura Bell ladynerd
0
230

Other Decks in Technology

See All in Technology
Harnessing the Power of Mocks and Stubs in PHPUnit / #laravellivejp
Avatar for asumikam asumikam
0
730
類似画像検索モデルの開発ノウハウ
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
4
1k
まだ道半ば、AI-DLCを歩み始めている話
Avatar for 荒木 ARK news_it_enj
2
210
Gradle×GitHub_ActionsでCI時間を約50%短縮 ジョブ分割の設計と落とし穴 / Cutting CI Time by ~50% with Gradle and GitHub Actions: Job-Splitting Design and Pitfalls
Avatar for 冨澤宝斗 takatty
0
500
NFLコンペ2026 解法
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
120
個人AIからチームAIへ:開発における品質と生産性の再設計
Avatar for Atsushi Nakatsugawa moongift
PRO
0
270
コードレビューを制するチームがソフトウェアデリバリーのフローを制す / Beyond Code Review: Distributing Its Responsibilities Across the SDLC
Avatar for mtx2s mtx2s
1
220
JICUG あなたのAI駆動開発パートナー IBM Bob を使ったアプリ開発
Avatar for 1ft-seabass 1ftseabass
PRO
0
110
Java正規表現エンジン(NFA)の仕組みと パフォーマンスを維持するための最適化手法
Avatar for 竹内 雅和 takeuchi_132917
0
140
ITエンジニアを取り巻く環境とキャリアパス / A career path for Japanese IT engineers
Avatar for 高玉 広和 / TAKATAMA Hirokazu takatama
4
1.8k
Anthropic AIネイティブ・スタートアップ構築のプレイブック を理解する
Avatar for 長津孝輔 nagatsu
0
200
APIテストとは?
Avatar for 草薙昭彦 nagix
0
130

Featured

See All Featured
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
234
18k
Collaborative Software Design: How to facilitate domain modelling decisions
Avatar for Kenny Baas-Schwegler baasie
1
230
Context Engineering - Making Every Token Count
Avatar for Addy Osmani addyosmani
9
910
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
41
2.5k
How to audit for AI Accessibility on your Front & Back End
Avatar for davetheseo davetheseo
0
390
The Hidden Cost of Media on the Web [PixelPalooza 2025]
Avatar for Tammy Everts tammyeverts
2
310
How to build an LLM SEO readiness audit: a practical framework
Avatar for Nick Samuel nmsamuel
1
750
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
51
52k
Redefining SEO in the New Era of Traffic Generation
Avatar for Szymon Słowik szymonslowik
1
310
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
45
9.1k
The SEO Collaboration Effect
Avatar for Kristina Bergwall kristinabergwall1
1
460
Writing Fast Ruby
Avatar for Erik Berlin sferik
630
63k

Transcript

  1. Security skills for the adventurous developer Laura Bell F O

    U N D E R & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o

  2. the world is a terrible place

  3. the internet is a festering pool of toxic waste

  4. None

  5. somebody probably wants to do bad things to your computer

  6. the security situation is beyond hope

  7. None

  8. we can build amazing things

  9. None
  10. None
  11. None

  12. doing this securely is hard

  13. QQ

  14. good adventures are supposed to be challenging

  15. so stop waiting for someone to hand you these skills

    on a plate

  16. this is your adventure

  17. let’s get started

  18. prepare for the (inevitable) sequel protect your treasure build amazing

    machines always have an escape route watch your back take the road well travelled prepare yourself plan your route (but keep it flexible)

  19. prepare yourself

  20. security starts with education

  21. security is a team sport

  22. plan your route (but keep it flexible)

  23. design before implementation

  24. examine all the options

  25. security requires compromises

  26. take the road well travelled

  27. follow in someone else’s footsteps

  28. know where to look for direction

  29. expose yourself to scrutiny

  30. build amazing machines

  31. build amazing machines

  32. security needs a robot army

  33. immutable architectures help security

  34. watch your back

  35. know everything there is to know

  36. use clever tools to build clever things

  37. Watch for expensive distractions

  38. more alarms and no surprises

  39. security is the long game

  40. watch for spies

  41. always have an escape route

  42. have a backup (plan)

  43. be prepared to action it

  44. store your backups securely

  45. protect your treasure

  46. know the value of what you have around you

  47. vs. vs. value is relative

  48. secure data starts with secure storage

  49. so about those passwords?

  50. secure systems need gatekeepers

  51. prepare for the (inevitable) sequel

  52. celebrate your successes

  53. learn from your mistakes

  54. prepare for the next adventure

  55. the world is a terrible place

  56. secure your own adventure

  57. questions? Laura Bell F O U N D E R

    & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o