Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Better Connected

Laura Bell
September 02, 2015
Technology
0
46

Better Connected

Lightning talk presented at Microsoft Ignite NZ 2015 by Laura Bell

Laura Bell

September 02, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
ladynerd
0
190
Hackcon 11 - Protecting our people
ladynerd
0
200
Security in a container based world
ladynerd
0
120
Securing Microservice Architectures
ladynerd
2
330
Continuous Security
ladynerd
3
970
Automated Human Vulnerability Scanning with AVA
ladynerd
3
2.6k
Blindsided by security
ladynerd
0
77
Practical tools for privacy audit
ladynerd
0
140
For the greater good? Open sourcing weaponisable code
ladynerd
1
270

Other Decks in Technology

See All in Technology
今さら聞けないDocker入門 〜 Dockerfileのベストプラクティス編
devops_vtj
21
6.4k
ルーターでプレゼンする
puhitaku
1
3.4k
本当のガバクラ基礎
toru_kubota
0
230
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
2.2k
Gemini, Google's Large Language Model
glaforge
0
120
コードや知識を組み込む / Incorporate Code and knowledge
ks91
PRO
0
160
Cloudflare WorkersがPythonに対応したので試してみた
miura55
0
100
M&A戦略を支えるデータマネジメント (MIDAS Tech Study #16 GENDA Komiyama)
kommy339
1
170
コードファーストの考え方。 Amplify Gen2から学ぶAWS次世代のWeb開発体験
yoshiitaka
2
540
Rustで「プリズモイダル法」を利用して「土量計算」をガチでやる
nokonoko1203
1
360
IaCからAWSに入門した初心者が CloudFormationを通して考えた「AWS操作」の使い分け
maimyyym
3
620
社内アプリで Cloudflare D1を プロダクト運用してみた体験談(Tokyo)
haochenx
0
130

Featured

See All Featured
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
14
8.4k
Product Roadmaps are Hard
iamctodd
45
9.8k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
358
22k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
22
6.4k
Building Adaptive Systems
keathley
32
1.9k
YesSQL, Process and Tooling at Scale
rocio
165
13k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
12
1k
Mobile First: as difficult as doing things right
swwweet
217
8.6k
From Idea to $5000 a Month in 5 Months
shpigford
378
45k
Making the Leap to Tech Lead
cromwellryan
125
8.5k
jQuery: Nuts, Bolts and Bling
dougneiner
60
7.2k

Transcript

  1. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Better connected

  2. this  is  a  story  about  security

  3. PEOPLE   TECHNOLOGY   PROCESS   CULTURE   ORGANISATION  

  4. None
  5. None

  6. 87  ac=ve  usernames  and  passwords • 7  Twi6er  accounts • 1  Facebook

    28  second  factor  authorisa=on  tokens • 22  applica=on  based • 6  SMS  code  based • 280  backup  codes Mul=ple  encryp=on  keys  &  certs •  PGP,  S/Mime,  SSL Mul=ple  financial  iden==es • 7  taxa=on  accounts • 6  na=onal  banking  iden=fiers • 3  payment  processors
  7. None
  8. None

  9. PART  OF  THE  PROBLEM

  10. 93%  organiza=ons  use  poor  quality,   shared  passwords  and  do

     not  change  them   when  people  leave

  11. 80%  organiza=ons  use  produc=on  data  in   test  environments

  12. We  don’t  understand  our  own   environments  and  technology  suites

  13. None

  14. PART  OF  THE  SOLUTION

  15. SORT  OUT  THE  BASICS. NO  EXCUSES PASSWORD   MANAGEMENT BACKUPS

    ROLES PERMISSIONS LANGUAGE PROTECTING   PRODUCTION   DATA

  16. DATA  IS  A  PRIVILEGE …  store  less

  17. WORDS  ARE  EXPENSIVE say  less,  communicate  more

  18. YOU  CANNOT  REMOVE  RISK by  making  things  more  complex

  19. EXPOSE  YOUR  VULNERABILITY focus  on  visibility  and  survival

  20. EVERYBODY EDUCATED EMPOWERED ACCOUNTABLE

  21. we  live  in  a  connected  world

  22. None

  23. go  protect  it  together

  24. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Questions?