Following the Wh1t3 Rabbit - Practical Enterprise Security

Enterprise Security organizations often find themselves caught between the ever-changing needs of the agile business, and the ever-present, ever-evolving threats to that business. At the same time – all too often we security professionals get caught up in “shiny object syndrome” which leads us to spend poorly, allocate resources unwisely, and generally de-couple from the organization we’re chartered to defend. Knowing how to defend begins with knowing what you’ll be defending, why it is worth defending, and who you’ll be defending from… and therein lies the trick. This blog takes the issue of enterprise security head-on, challenging outdated thinking and bringing a pragmatic, business-aligned, beyond the tools perspective … so follow the Wh1t3 Rabbit and remember that tools alone don’t solve problems, strategic thinkers are the key.

Rafal (Principal, Strategic Security Services)

OWASP AppSec USA Talk - Into the Rabbithole - Slides

As for my talk - "Into the Rabbithole - Evolved Web Application Security Testing" ... it certainly generated a lot of hallway conversation as some of you stopped me to talk about it more after my talk, in the hallway, and over dinner.  Thanks for every one of the 80+ people who sat in and hopefully walked away with some new knowledge and are utilizing that knowledge today.  I have been asked to upload my slides, so I am trying out our new blogging platform which handles uploading of document content.  Please let me know if there are difficulties...

Labels: OWASP| slides| talk
About the Author(s)
Follow Us
Twitter Stream

Community Announcements
HP Blog

Technical Support Services Blog

The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation