Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Security survival skills (for the adventurous d...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Laura Bell Laura Bell
April 24, 2015
Technology
0
120

Security survival skills (for the adventurous developer)

Avatar for Laura Bell

Laura Bell

April 24, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
Avatar for Laura Bell ladynerd
0
280
Hackcon 11 - Protecting our people
Avatar for Laura Bell ladynerd
0
240
Security in a container based world
Avatar for Laura Bell ladynerd
0
150
Securing Microservice Architectures
Avatar for Laura Bell ladynerd
2
360
Better Connected
Avatar for Laura Bell ladynerd
0
73
Continuous Security
Avatar for Laura Bell ladynerd
3
1.2k
Automated Human Vulnerability Scanning with AVA
Avatar for Laura Bell ladynerd
3
2.7k
Blindsided by security
Avatar for Laura Bell ladynerd
0
130
Practical tools for privacy audit
Avatar for Laura Bell ladynerd
0
210

Other Decks in Technology

See All in Technology
プロポーザルに込める段取り八分
Avatar for ShoheiMitani shoheimitani
1
470
CDK対応したAWS DevOps Agentを試そう_20260201
Avatar for モブエンジニア(Masaki Okuda) masakiokuda
1
350
Context Engineeringが企業で不可欠になる理由
Avatar for Hirosato Gamo hirosatogamo
PRO
3
620
OpenShiftでllm-dを動かそう!
Avatar for jpishikawa jpishikawa
0
130
StrandsとNeptuneを使ってナレッジグラフを構築する
Avatar for やくも yakumo
1
120
Greatest Disaster Hits in Web Performance
Avatar for Estela Franco guaca
0
270
Amazon S3 Vectorsを使って資格勉強用AIエージェントを構築してみた
Avatar for usanchuu usanchuu
3
450
AIエージェントを開発しよう!-AgentCore活用の勘所-
Avatar for YukiOgawa yukiogawa
0
170
Webhook best practices for rock solid and resilient deployments
Avatar for Guillaume Laforge glaforge
2
300
仕様書駆動AI開発の実践: Issue→Skill→PRテンプレで 再現性を作る
Avatar for 西岡 賢一郎 (Kenichiro Nishioka) knishioka
2
680
プロダクト成長を支える開発基盤とスケールに伴う課題
Avatar for yuu26 yuu26
4
1.3k
モダンUIでフルサーバーレスなAIエージェントをAmplifyとCDKでサクッとデプロイしよう
Avatar for みのるん minorun365
4
220

Featured

See All Featured
Unsuck your backbone
Avatar for Amy Palamountain ammeep
671
58k
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
Avatar for Sophie Logan marketingsoph
0
76
Getting science done with accelerated Python computing platforms
Avatar for Jacob Tomlinson jacobtomlinson
2
120
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
Avatar for Joe Casabona jcasabona
34
2.6k
The Director’s Chair: Orchestrating AI for Truly Effective Learning
Avatar for Mike Taylor tmiket
1
97
Data-driven link building: lessons from a $708K investment (BrightonSEO talk)
Avatar for Szymon szymonslowik
1
910
Technical Leadership for Architectural Decision Making
Avatar for Kenny Baas-Schwegler baasie
2
250
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
Avatar for Beat Signer signer
PRO
0
3.2k
Amusing Abliteration
Avatar for ianozsvald ianozsvald
0
100
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
333
22k
How GitHub (no longer) Works
Avatar for Zach Holman holman
316
140k
Stop Working from a Prison Cell
Avatar for Chris Michel hatefulcrawdad
273
21k

Transcript

  1. Security skills for the adventurous developer Laura Bell F O

    U N D E R & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o

  2. the world is a terrible place

  3. the internet is a festering pool of toxic waste

  4. None

  5. somebody probably wants to do bad things to your computer

  6. the security situation is beyond hope

  7. None

  8. we can build amazing things

  9. None
  10. None
  11. None

  12. doing this securely is hard

  13. QQ

  14. good adventures are supposed to be challenging

  15. so stop waiting for someone to hand you these skills

    on a plate

  16. this is your adventure

  17. let’s get started

  18. prepare for the (inevitable) sequel protect your treasure build amazing

    machines always have an escape route watch your back take the road well travelled prepare yourself plan your route (but keep it flexible)

  19. prepare yourself

  20. security starts with education

  21. security is a team sport

  22. plan your route (but keep it flexible)

  23. design before implementation

  24. examine all the options

  25. security requires compromises

  26. take the road well travelled

  27. follow in someone else’s footsteps

  28. know where to look for direction

  29. expose yourself to scrutiny

  30. build amazing machines

  31. build amazing machines

  32. security needs a robot army

  33. immutable architectures help security

  34. watch your back

  35. know everything there is to know

  36. use clever tools to build clever things

  37. Watch for expensive distractions

  38. more alarms and no surprises

  39. security is the long game

  40. watch for spies

  41. always have an escape route

  42. have a backup (plan)

  43. be prepared to action it

  44. store your backups securely

  45. protect your treasure

  46. know the value of what you have around you

  47. vs. vs. value is relative

  48. secure data starts with secure storage

  49. so about those passwords?

  50. secure systems need gatekeepers

  51. prepare for the (inevitable) sequel

  52. celebrate your successes

  53. learn from your mistakes

  54. prepare for the next adventure

  55. the world is a terrible place

  56. secure your own adventure

  57. questions? Laura Bell F O U N D E R

    & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o