Will you join the team of 30 million? |
Abstract
Facing a global pandemic has been (and continues to be) an incredibly challenging period. There are very few people who have not seen dramatic impacts on their lives as a result. While we as humans have been facing this struggle, a similar problem has been emerging in our software development community. Not only are we finding more vulnerabilities in our software than ever, but those weaknesses have been affecting a larger proportion of our software ecosystem.Are there lessons we can take from the last few years and the changes we have made to protect people from a pandemic and apply them to our software ecosystem? I believe there are. In this talk, we will look at how the relationships between software projects improve our world whilst also making us vulnerable. We will do this by diving into the structures between codebases and looking at how these affect the risk faced by our people, data, and systems. We will then take a look at the harm that has been caused (and could yet be caused) by exploiting this ecosystem and the steps we can take to reduce this risk and increase the resilience of all our systems — steps that mirror the hard lessons we have learned as humans over the past few years. Speaker Bio: Laura Bell Main is the Founder and CEO, SafeStack Academy. With over twenty years of experience in software development and information security, Laura Bell specialises in bringing security into organisations of every shape and size. She is the founder and CEO of SafeStack Academy, an online education platform offering flexible, high-quality, and people-focused secure development training for fast moving companies, with a focus on building security skills, practices, and culture across the entire engineering team. Laura is an experienced conference speaker, trainer, and regular panel member, and has spoken at a range of events such as BlackHat USA, Velocity, and OSCON on the subjects of privacy, covert communications, agile security, and security mindset. She is also the co-author of Agile Application Security and Security for Everyone. |