Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Better Connected

Laura Bell
September 02, 2015
Technology
0
54

Better Connected

Lightning talk presented at Microsoft Ignite NZ 2015 by Laura Bell

Laura Bell

September 02, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
ladynerd
0
230
Hackcon 11 - Protecting our people
ladynerd
0
220
Security in a container based world
ladynerd
0
130
Securing Microservice Architectures
ladynerd
2
340
Continuous Security
ladynerd
3
1.1k
Automated Human Vulnerability Scanning with AVA
ladynerd
3
2.6k
Blindsided by security
ladynerd
0
79
Practical tools for privacy audit
ladynerd
0
170
For the greater good? Open sourcing weaponisable code
ladynerd
1
310

Other Decks in Technology

See All in Technology
B2B SaaSから見た最近のC#/.NETの進化
sansantech
PRO
0
750
いざ、BSC討伐の旅
nikinusu
2
780
20241120_JAWS_東京_ランチタイムLT#17_AWS認定全冠の先へ
tsumita
2
250
AGIについてChatGPTに聞いてみた
blueb
0
130
誰も全体を知らない ~ ロールの垣根を超えて引き上げる開発生産性 / Boosting Development Productivity Across Roles
kakehashi
1
220
ハイパーパラメータチューニングって何をしているの
toridori_dev
0
140
初心者向けAWS Securityの勉強会mini Security-JAWSを9ヶ月ぐらい実施してきての近況
cmusudakeisuke
0
120
EventHub Startup CTO of the year 2024 ピッチ資料
eventhub
0
110
100 名超が参加した日経グループ横断の競技型 AWS 学習イベント「Nikkei Group AWS GameDay」の紹介/mediajaws202411
nikkei_engineer_recruiting
1
170
Terraform未経験の御様に対してどの ように導⼊を進めていったか
tkikuchi
2
430
Can We Measure Developer Productivity?
ewolff
1
150
個人でもIAM Identity Centerを使おう!(アクセス管理編)
ryder472
3
200

Featured

See All Featured
Being A Developer After 40
akosma
86
590k
The Art of Programming - Codeland 2020
erikaheidi
52
13k
Mobile First: as difficult as doing things right
swwweet
222
8.9k
Six Lessons from altMBA
skipperchong
27
3.5k
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.9k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
232
17k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
25
1.8k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.3k
The World Runs on Bad Software
bkeepers
PRO
65
11k
How to train your dragon (web standard)
notwaldorf
88
5.7k
KATA
mclloyd
29
14k
The Invisible Side of Design
smashingmag
298
50k

Transcript

  1. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Better connected

  2. this  is  a  story  about  security

  3. PEOPLE   TECHNOLOGY   PROCESS   CULTURE   ORGANISATION  

  4. None
  5. None

  6. 87  ac=ve  usernames  and  passwords • 7  Twi6er  accounts • 1  Facebook

    28  second  factor  authorisa=on  tokens • 22  applica=on  based • 6  SMS  code  based • 280  backup  codes Mul=ple  encryp=on  keys  &  certs •  PGP,  S/Mime,  SSL Mul=ple  financial  iden==es • 7  taxa=on  accounts • 6  na=onal  banking  iden=fiers • 3  payment  processors
  7. None
  8. None

  9. PART  OF  THE  PROBLEM

  10. 93%  organiza=ons  use  poor  quality,   shared  passwords  and  do

     not  change  them   when  people  leave

  11. 80%  organiza=ons  use  produc=on  data  in   test  environments

  12. We  don’t  understand  our  own   environments  and  technology  suites

  13. None

  14. PART  OF  THE  SOLUTION

  15. SORT  OUT  THE  BASICS. NO  EXCUSES PASSWORD   MANAGEMENT BACKUPS

    ROLES PERMISSIONS LANGUAGE PROTECTING   PRODUCTION   DATA

  16. DATA  IS  A  PRIVILEGE …  store  less

  17. WORDS  ARE  EXPENSIVE say  less,  communicate  more

  18. YOU  CANNOT  REMOVE  RISK by  making  things  more  complex

  19. EXPOSE  YOUR  VULNERABILITY focus  on  visibility  and  survival

  20. EVERYBODY EDUCATED EMPOWERED ACCOUNTABLE

  21. we  live  in  a  connected  world

  22. None

  23. go  protect  it  together

  24. Laura Bell Founder  and  Lead  Consultant  -­‐  SafeStack @lady_nerd  

     [email protected]   h6p:/ /safestack.io   Questions?