Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Security survival skills (for the adventurous d...
Search
Laura Bell
April 24, 2015
Technology
0
110
Security survival skills (for the adventurous developer)
Laura Bell
April 24, 2015
Tweet
Share
More Decks by Laura Bell
See All by Laura Bell
DIY security for the amateur superhero
ladynerd
0
260
Hackcon 11 - Protecting our people
ladynerd
0
240
Security in a container based world
ladynerd
0
150
Securing Microservice Architectures
ladynerd
2
360
Better Connected
ladynerd
0
71
Continuous Security
ladynerd
3
1.1k
Automated Human Vulnerability Scanning with AVA
ladynerd
3
2.7k
Blindsided by security
ladynerd
0
100
Practical tools for privacy audit
ladynerd
0
200
Other Decks in Technology
See All in Technology
実践データベース設計 ①データベース設計概論
recruitengineers
PRO
2
210
Evolution on AI Agent and Beyond - AGI への道のりと、シンギュラリティの3つのシナリオ
masayamoriofficial
0
170
kintone開発チームの紹介
cybozuinsideout
PRO
0
73k
[OCI Skill Mapping] AWSユーザーのためのOCI(2025年8月20日開催)
oracle4engineer
PRO
2
140
広島発!スタートアップ開発の裏側
tsankyo
0
240
ドキュメントはAIの味方!スタートアップのアジャイルを加速するADR
kawauso
3
350
あとはAIに任せて人間は自由に生きる
kentaro
3
1.1k
人を動かすことについて考える
ichimichi
2
320
マイクロモビリティシェアサービスを支える プラットフォームアーキテクチャ
grimoh
1
200
見てわかるテスト駆動開発
recruitengineers
PRO
4
300
モダンフロントエンド 開発研修
recruitengineers
PRO
2
290
Android Studio の 新しいAI機能を試してみよう / Try out the new AI features in Android Studio
yanzm
0
270
Featured
See All Featured
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
46
7.6k
KATA
mclloyd
32
14k
The Cost Of JavaScript in 2023
addyosmani
53
8.8k
Why Our Code Smells
bkeepers
PRO
338
57k
Thoughts on Productivity
jonyablonski
69
4.8k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
44
2.4k
The Invisible Side of Design
smashingmag
301
51k
Visualization
eitanlees
147
16k
Docker and Python
trallard
45
3.5k
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
9
780
4 Signs Your Business is Dying
shpigford
184
22k
A Modern Web Designer's Workflow
chriscoyier
695
190k
Transcript
Security skills for the adventurous developer Laura Bell F O
U N D E R & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o
the world is a terrible place
the internet is a festering pool of toxic waste
None
somebody probably wants to do bad things to your computer
the security situation is beyond hope
None
we can build amazing things
None
None
None
doing this securely is hard
QQ
good adventures are supposed to be challenging
so stop waiting for someone to hand you these skills
on a plate
this is your adventure
let’s get started
prepare for the (inevitable) sequel protect your treasure build amazing
machines always have an escape route watch your back take the road well travelled prepare yourself plan your route (but keep it flexible)
prepare yourself
security starts with education
security is a team sport
plan your route (but keep it flexible)
design before implementation
examine all the options
security requires compromises
take the road well travelled
follow in someone else’s footsteps
know where to look for direction
expose yourself to scrutiny
build amazing machines
build amazing machines
security needs a robot army
immutable architectures help security
watch your back
know everything there is to know
use clever tools to build clever things
Watch for expensive distractions
more alarms and no surprises
security is the long game
watch for spies
always have an escape route
have a backup (plan)
be prepared to action it
store your backups securely
protect your treasure
know the value of what you have around you
vs. vs. value is relative
secure data starts with secure storage
so about those passwords?
secure systems need gatekeepers
prepare for the (inevitable) sequel
celebrate your successes
learn from your mistakes
prepare for the next adventure
the world is a terrible place
secure your own adventure
questions? Laura Bell F O U N D E R
& L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o