[email protected] @okdt OWASP Life-time member 15+ OWASPer AppSec professional OWASP Japan

Congratulations!

The first era of OWASP Documents in Japanese thanks to Mr. Satoru Takahashi, 2004-2006

2012 OWASP Japan 1st meetup

Thank you for all your support!

SHIFT LEFT? By @akiko_pusu, 2017

Japanese

2021年 Developers Dislike Security: Ten Frustrations and Resolutions Chris Romeo, 2021. https://www.youtube.com/watch?v=nN7NH752onk

Shift-left analogy Let's do shift-left for progressive purposes. Front Loading Retrospective Kaizen Why 5 times

,FZGBDUPSTUPTVDDFFE4)*'5-&'5 MUTUAL UNDERSTANDING BUSINESS GOAL & RISKS KEEP UP TO DATE

WASFORUM.jp

No content

Hardening Project

No content

No content

Started

Spy comes…

Attackers

Attackers are very good at collaboration

Incident response

Marketplace

No content

SCORE BOARD

8-hour competition

No content

Softening Day

presentations

Hardening DX

“Kuromame 6”

No content

Summary: Key Success factors of SHIFT-LEFT MUTUAL UNDERSTANDING BUSINESS GOAL & RISKS KEEP UP TO DATE

My idea – “proactive controls” Be a guardrails. Discuss the most effective fixing points and timing Study their languages and environments Update frequently and show flexibility Give reasonable countermeasures, even if it is “plan-B” Teach how developers can check findings by themselves. Have the common goal and Praise their success Have good experience to collaborate with different roles. Join OWASP

#シフトレフト powered by OWASP For your photo! #shiftleft