[Owasp-o2-platform] My presentation at OWASP AppSec Brazil: "Making Security Invisible by Becoming the Developer's Best Friends"

dinis cruz dinis.cruz at owasp.org
Thu Oct 13 22:37:00 EDT 2011


Hi, here is the presentation I delivered last week at OWASP's AppSec Brazil
conference: OWASP Brazil - Making Security Invisible by Becoming the
Developer's Best
Friends<http://o2platform.googlecode.com/files/OWASP%20Brazil%20-%20Making%20Security%20Invisible%20by%20Becoming%20the%20Developer%27s%20Best%20Friends%20v2.pdf>

I think I was able to capture how security tends to be seen by developers,
how it is currently a TAX on the SDL and how we need to move Application
Security into the 'application visibility' space so that we add value to the
entire SDL (and create a positive model where the developers want to engage
with us)

After you read the presentation, check out this video which I recorded also
in Brazil: A developer's rant about security
professionals<http://www.youtube.com/watch?v=HYEPYSF32kQ>
(he was one of the developers that was at the audience which really related
to the problem of receiving security guidance from security 'consultants'
that don't understand his app).

The demos showed how O2 allowed this world to exist :)

Let me know what you think of it.

Dinis Cruz

Blog: http://diniscruz.blogspot.com
Twitter: http://twitter.com/DinisCruz
Web: http://www.owasp.org/index.php/O2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-o2-platform/attachments/20111014/067faf06/attachment.html 


More information about the Owasp-o2-platform mailing list