Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Security survival skills (for the adventurous d...

Avatar for Laura Bell Laura Bell
April 24, 2015
Technology
0
110

Security survival skills (for the adventurous developer)

Avatar for Laura Bell

Laura Bell

April 24, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
Avatar for Laura Bell ladynerd
0
260
Hackcon 11 - Protecting our people
Avatar for Laura Bell ladynerd
0
240
Security in a container based world
Avatar for Laura Bell ladynerd
0
150
Securing Microservice Architectures
Avatar for Laura Bell ladynerd
2
360
Better Connected
Avatar for Laura Bell ladynerd
0
71
Continuous Security
Avatar for Laura Bell ladynerd
3
1.1k
Automated Human Vulnerability Scanning with AVA
Avatar for Laura Bell ladynerd
3
2.7k
Blindsided by security
Avatar for Laura Bell ladynerd
0
100
Practical tools for privacy audit
Avatar for Laura Bell ladynerd
0
200

Other Decks in Technology

See All in Technology
浸透しなさいRFC 5322&7208
Avatar for Nonogaki Hiroshi hinono
0
120
Goss: New Production-Ready Go Binding for Faiss #coefl_go_jp
Avatar for 弁護士ドットコム bengo4com
0
1.1k
7月のガバクラ利用料が高かったので調べてみた
Avatar for 高橋広和 techniczna
3
260
Backboneとしてのtimm2025
Avatar for yu4u yu4u
4
1.4k
攻撃と防御で実践するプロダクトセキュリティ演習~導入パート~
Avatar for Recruit recruitengineers
PRO
1
150
サービスロボット最前線:ugoが挑むPhysical AI活用
Avatar for Ken Matsui kmatsuiugo
0
190
Evolution on AI Agent and Beyond - AGI への道のりと、シンギュラリティの3つのシナリオ
Avatar for Masaya Mori (森正弥) / CAIO (Chief AI Officer) masayamoriofficial
0
170
DeNA での思い出 / Memories at DeNA
Avatar for Kuniwak orgachem
PRO
3
1.6k
Goでマークダウンの独自記法を実装する
Avatar for lag129 lag129
0
210
ソフトウェア エンジニアとしての 姿勢と心構え
Avatar for Recruit recruitengineers
PRO
2
620
実践データベース設計 ①データベース設計概論
Avatar for Recruit recruitengineers
PRO
2
200
Go で言うところのアレは TypeScript で言うとコレ / Kyoto.なんか #7
Avatar for Susisu susisu
5
1.5k

Featured

See All Featured
[RailsConf 2023 Opening Keynote] The Magic of Rails
Avatar for Eileen M. Uchitelle eileencodes
30
9.6k
Easily Structure & Communicate Ideas using Wireframe
Avatar for Afnizar Nur Ghifari afnizarnur
194
16k
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
329
21k
A better future with KSS
Avatar for Kyle Neath kneath
239
17k
Art, The Web, and Tiny UX
Avatar for Lynn Fisher lynnandtonic
302
21k
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
333
22k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4k
How to Ace a Technical Interview
Avatar for Jacob Kaplan-Moss jacobian
279
23k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
338
57k
Making Projects Easy
Avatar for Brett Harned brettharned
117
6.3k
Measuring & Analyzing Core Web Vitals
Avatar for Philip Tellis bluesmoon
9
570
It's Worth the Effort
Avatar for 3n 3n
187
28k

Transcript

  1. Security skills for the adventurous developer Laura Bell F O

    U N D E R & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o

  2. the world is a terrible place

  3. the internet is a festering pool of toxic waste

  4. None

  5. somebody probably wants to do bad things to your computer

  6. the security situation is beyond hope

  7. None

  8. we can build amazing things

  9. None
  10. None
  11. None

  12. doing this securely is hard

  13. QQ

  14. good adventures are supposed to be challenging

  15. so stop waiting for someone to hand you these skills

    on a plate

  16. this is your adventure

  17. let’s get started

  18. prepare for the (inevitable) sequel protect your treasure build amazing

    machines always have an escape route watch your back take the road well travelled prepare yourself plan your route (but keep it flexible)

  19. prepare yourself

  20. security starts with education

  21. security is a team sport

  22. plan your route (but keep it flexible)

  23. design before implementation

  24. examine all the options

  25. security requires compromises

  26. take the road well travelled

  27. follow in someone else’s footsteps

  28. know where to look for direction

  29. expose yourself to scrutiny

  30. build amazing machines

  31. build amazing machines

  32. security needs a robot army

  33. immutable architectures help security

  34. watch your back

  35. know everything there is to know

  36. use clever tools to build clever things

  37. Watch for expensive distractions

  38. more alarms and no surprises

  39. security is the long game

  40. watch for spies

  41. always have an escape route

  42. have a backup (plan)

  43. be prepared to action it

  44. store your backups securely

  45. protect your treasure

  46. know the value of what you have around you

  47. vs. vs. value is relative

  48. secure data starts with secure storage

  49. so about those passwords?

  50. secure systems need gatekeepers

  51. prepare for the (inevitable) sequel

  52. celebrate your successes

  53. learn from your mistakes

  54. prepare for the next adventure

  55. the world is a terrible place

  56. secure your own adventure

  57. questions? Laura Bell F O U N D E R

    & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o