For web-first companies, the old infosec models of simply locking everything down have fallen by the wayside, in favor of new approaches that allow businesses to move quickly and improve their security practices simultaneously.
Where standard security measures and compliance and audit practices used to impede progress, from product design through development and deployment, they are now folded into agile processes, DevOps approaches and tooling, and continuous delivery pipelines. This might all seem like fantasy and vaporware for financial organizations, but it is happening there, too, albeit at a slower pace. This panel brings together security startups and veterans to discuss the challenges and opportunities facing financial organizations in this new landscape.
Courtney Nash chairs multiple conferences for O’Reilly Media and is the strategic content director focused on areas of modern web operations, high-performance applications, and security. An erstwhile academic neuroscientist, she is still fascinated by the brain and how it informs our interactions with and expectations of technology. She’s spent 17 years working in the technology industry in a wide variety of roles, ever since moving to Seattle to work at a burgeoning online bookstore. Outside work, Courtney can be found biking, hiking, skiing, and photographing the Cascade Mountains near her home in Bellingham, Washington.
Jamesha Fisher is a security operations engineer at GitHub. Jamesha has worked in the tech industry for over 10 years, with a special interest in security. Graduating with a degree in information assurance and security engineering, she lent her experience to operations and systems engineering at companies like Google and CloudPassage. In her spare time, Jamesha is a maker of things musical or delicious and objects that use binary numbers.
Elizabeth Lawler is CEO and co-founder of Conjur, Inc., a security company that focuses on providing IT and developer tools to secure next generation applications and infrastructure. Elizabeth has over 20 years of experience working in highly regulated and sensitive data environments. Elizabeth speaks on how speed, scale, security, and compliance can be achieved through organizational, methodological, and technological change. Prior to founding Conjur, Elizabeth was chief data officer of Generation Health, and held a leadership position in research at the Department of Veterans Affairs. She is a programmer herself and is constantly working to make development and IT systems easier to manage for people working in regulated industries. She holds a Doctorate of Science and a Masters in Biostatistics and Epidemiology from Boston University.
Zane Lackey is the cofounder and CSO at Signal Sciences and serves on the advisory boards of the Internet Bug Bounty Program and the US State Department-backed Open Technology Fund. Prior to Signal Sciences, Zane was the director of security engineering at Etsy and a senior security consultant at iSEC Partners. He has been featured in notable media outlets such as the BBC, Associated Press, Forbes, Wired, CNET, Network World, and SC Magazine. A frequent speaker at top industry conferences, Zane has presented at BlackHat, RSA, USENIX, Velocity, Microsoft BlueHat, SANS, OWASP, and QCon and has given invited lectures at Facebook, Goldman Sachs, New York University, and Reykjavík University. Zane is a contributing author of Mobile Application Security (McGraw-Hill), a coauthor of Hacking Exposed: Web 2.0 (McGraw-Hill), and a contributing author/technical editor of Hacking VoIP (No Starch Press). He holds a bachelor of arts in economics with a minor in computer science from the University of California, Davis.
©2015, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org