Description: A review of recent web site attacks will be given to help understand what major vulnerabilities are common for web sites, how attacks are executed, and what a compromise can mean to a company, government, or other organization. Further attention will be given to: how an entity can prevent poor programming from ruining their security; how web programmerscompare to other industries for qualifications required to interact with highly sensitive data; and a forward-thinking discussion on how the industry can be proactive when hiring programmers. The goal of this presentation is to make all parties involved in information security aware of just how serious one poorly created web site can be to fabric of theirinformation security architecture and practices.
About Speaker: Mark Stanislav
linux. automation. configuration management. cloud. devops. ruby. php. infosec. education. puppet. foo. bar. bio from Twitter
Mark Stanislav is a Senior Consultant at NetWorks Group, focused on operational automation and information security. With a career spanning a decade, Mark has worked within small business, academia, start-up, and corporate environments primarily focused on Linux architecture, information security, and web application development. Mark holds a Bachelor’s degree in Networking & IT Administration and a Master’s in Technology Studies focused on Information Assurance, both from Eastern Michigan University. Mark also holds his CISSP, Security+, Linux+, and CCSK certifications.
Tags: cloud , web-application , php , ruby , linux , security ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.