You’ve probably heard people stating something is a best practice, but how many times have you actually successfully implemented these best practices in your products?
Step outside the best practices comfort zone, as Nir Valtman walks you through a thought experiment to secure 100 products. Along the way, Nir explores procedural and technological challenges such as working with diverse software architectures, multiple development languages and platforms, a variety of development lifecycles, injecting security into continuous integration and delivery, and more.
You’ll learn solid approaches to cope with these challenges—scaling out the application security team’s capabilities, putting the right tools in place, and following newly introduced rules of thumb to build a successful team—and leave armed with the practical execution smarts to secure products on a massive scale.
Nir Valtman heads the application security of the software solutions for NCR Corporation. Previously, Nir led security for R&D at Retalix (acquired by NCR) and held several application security, penetration testing, and systems infrastructure security positions. Nir is a frequent speaker at leading conferences around the world, including Black Hat, DEF CON, BSides, RSA, and OWASP. He holds a BS in computer science, but his knowledge is mainly based on cowboy learning and information sharing with techno-oriented communities such as bloggers and the open source community (particularly for the AntiDef, Cloudefigo, and SAPIA tools).
©2017, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org