Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Security survival skills (for the adventurous d...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Laura Bell Laura Bell
April 24, 2015
Technology
0
120

Security survival skills (for the adventurous developer)

Avatar for Laura Bell

Laura Bell

April 24, 2015
Tweet

More Decks by Laura Bell

See All by Laura Bell
DIY security for the amateur superhero
Avatar for Laura Bell ladynerd
0
280
Hackcon 11 - Protecting our people
Avatar for Laura Bell ladynerd
0
240
Security in a container based world
Avatar for Laura Bell ladynerd
0
160
Securing Microservice Architectures
Avatar for Laura Bell ladynerd
2
360
Better Connected
Avatar for Laura Bell ladynerd
0
74
Continuous Security
Avatar for Laura Bell ladynerd
3
1.2k
Automated Human Vulnerability Scanning with AVA
Avatar for Laura Bell ladynerd
3
2.7k
Blindsided by security
Avatar for Laura Bell ladynerd
0
130
Practical tools for privacy audit
Avatar for Laura Bell ladynerd
0
220

Other Decks in Technology

See All in Technology
VLAモデル構築のための AIロボット向け模倣学習キット
Avatar for Ken Matsui kmatsuiugo
0
230
"作る"から"使われる"へ:Backstage 活用の現在地
Avatar for SoftBank Tech Night sbtechnight
0
170
進化するBits AI SREと私と組織
Avatar for 株式会社ヌーラボ nulabinc
PRO
1
220
会社紹介資料 / Sansan Company Profile
Avatar for Sansan, Inc. sansan33
PRO
16
410k
OpenClaw を Amazon Lightsail で動かす理由
Avatar for Uechi Shingo uechishingo
0
150
情シスのための生成AI実践ガイド2026 / Generative AI Practical Guide for Business Technology 2026
Avatar for Akira Maeda glidenote
0
270
JAWSDAYS2026 [C02] 楽しく学ぼう!AWSとは?AWSの歴史 入門
Avatar for 平賀博司 hiragahh
0
170
ガバメントクラウドにおけるAWSの長期継続割引について
Avatar for takeda_h takeda_h
2
340
楽しく学ぼう!ネットワーク入門
Avatar for Shota Shiratori shotashiratori
4
3.4k
プラットフォームエンジニアリングはAI時代の開発者をどう救うのか
Avatar for Kazuto Kusama jacopen
7
3.7k
S3はフラットである –AWS公式SDKにも存在した、 署名付きURLにおけるパストラバーサル脆弱性– / JAWS DAYS 2026
Avatar for GMO Flatt Security flatt_security
0
1.8k
AWSの資格って役に立つの?
Avatar for Hiroki Takatsuka tk3fftk
2
350

Featured

See All Featured
Beyond borders and beyond the search box: How to win the global "messy middle" with AI-driven SEO
Avatar for David Carrasco davidcarrasco
3
76
Music & Morning Musume
Avatar for Bryan Veloso bryan
47
7.1k
Understanding Cognitive Biases in Performance Measurement
Avatar for Philip Tellis bluesmoon
32
2.8k
The Curious Case for Waylosing
Avatar for Cassini Nazir cassininazir
0
270
Fireside Chat
Avatar for paigeccino paigeccino
42
3.8k
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
Why You Should Never Use an ORM
Avatar for John Nunemaker jnunemaker
PRO
61
9.8k
sira's awesome portfolio website redesign presentation
Avatar for ElsiraPls elsirapls
0
190
How to Think Like a Performance Engineer
Avatar for Harry Roberts csswizardry
28
2.5k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.6k
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
The Mindset for Success: Future Career Progression
Avatar for Greg Gifford greggifford
PRO
0
280

Transcript

  1. Security skills for the adventurous developer Laura Bell F O

    U N D E R & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o

  2. the world is a terrible place

  3. the internet is a festering pool of toxic waste

  4. None

  5. somebody probably wants to do bad things to your computer

  6. the security situation is beyond hope

  7. None

  8. we can build amazing things

  9. None
  10. None
  11. None

  12. doing this securely is hard

  13. QQ

  14. good adventures are supposed to be challenging

  15. so stop waiting for someone to hand you these skills

    on a plate

  16. this is your adventure

  17. let’s get started

  18. prepare for the (inevitable) sequel protect your treasure build amazing

    machines always have an escape route watch your back take the road well travelled prepare yourself plan your route (but keep it flexible)

  19. prepare yourself

  20. security starts with education

  21. security is a team sport

  22. plan your route (but keep it flexible)

  23. design before implementation

  24. examine all the options

  25. security requires compromises

  26. take the road well travelled

  27. follow in someone else’s footsteps

  28. know where to look for direction

  29. expose yourself to scrutiny

  30. build amazing machines

  31. build amazing machines

  32. security needs a robot army

  33. immutable architectures help security

  34. watch your back

  35. know everything there is to know

  36. use clever tools to build clever things

  37. Watch for expensive distractions

  38. more alarms and no surprises

  39. security is the long game

  40. watch for spies

  41. always have an escape route

  42. have a backup (plan)

  43. be prepared to action it

  44. store your backups securely

  45. protect your treasure

  46. know the value of what you have around you

  47. vs. vs. value is relative

  48. secure data starts with secure storage

  49. so about those passwords?

  50. secure systems need gatekeepers

  51. prepare for the (inevitable) sequel

  52. celebrate your successes

  53. learn from your mistakes

  54. prepare for the next adventure

  55. the world is a terrible place

  56. secure your own adventure

  57. questions? Laura Bell F O U N D E R

    & L E A D C O N S U LTA N T S A F E S TAC K @ l a d y _ n e rd l a u r a @ s a fe s t a c k . i o