Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Does agile make us less secure

Does agile make us less secure

Organisations adopting agile practices tend to throw out the old practices of requirements gathering, up front system design and careful analysis in favour of writing code just in time and pushing into production multiple times per day.

Doesn’t this make us far less secure?

Michael will address this question and talk about the tension between agile and security - and offer ways that you can resolve this tension.

Michael Brunton-Spall

September 27, 2018
Tweet

More Decks by Michael Brunton-Spall

Other Decks in Technology

Transcript

  1. Michael Brunton-Spall @bruntonspall A process for assuring the preservation of

    confidentiality, integrity and availability of information
  2. Michael Brunton-Spall @bruntonspall A process for assuring the preservation of

    confidentiality, integrity and availability of information
  3. Michael Brunton-Spall @bruntonspall Han Solo Motivation Han Solo is motivated

    primarily by money, but also works with the rebel alliance. Han is capable of using common tools as well as modifying existing tools on the fly Han doesn’t want to be caught and so takes an effort to avoid head on confrontations Capabilities Resources: 2/5 Capability: 4/5 Bravery: 2/5 Criminal connections: 3/5 Connections Rebel Alliance, Hutts
  4. Michael Brunton-Spall @bruntonspall GOV.UK fixed Heartbleed within approx 2 hours

    https://insidegovuk.blog.gov.uk/2014/04/11/govuk-and-the-heartbleed-openssl-bug/