Loading…
Back To Schedule
Tuesday, January 24 • 12:00pm - 12:50pm
Twubhubbook: like an appsec program, but for startups

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
It’s 2025. Many of the problems in appsec in <%= current_year %> have mitigations, maybe even solutions. The value of an appsec program is widely accepted as a requirement for any successful company. Yet XSS and other common vulnerabilities are still occupying the time of many engineering teams. Twubhubbook has the benefit of being a new startup: it's mostly a blank slate situation. This is the story of how Twubhubbook rolled out their program without skipping a beat or breaking the bank. The purpose of this imaginary story is to provide practical advice that you can take to a current or future startup (sorry enterprise people) based on the successes and failures of today's startups. 
Speakers
avatar for Brent Johnson

Brent Johnson

Application Security Contractor, GitHub
Brent is a working as an Application Security contractor for GitHub as he finishes a B.S in Computer Science with a minor in Applied Computer Security from the University of Southern California. His primary focus is on application security and he has a strong interest in ways to automate... Read More →
avatar for Neil Matatall

Neil Matatall

Product Security Engineer, GitHub
Neil is a product security engineer at GitHub. He has mostly worked on web application security and is frequently involved in AppSec communities. Previously, Neil has been an engineer at Twitter, a W3C-webappsec group member, an OWASP Chapter leader, and has organized multiple conferences... Read More →

twubhubbook pdf
Tuesday January 24, 2017 12:00pm - 12:50pm PST
Marion Davies Guest House
  Marion Davies Guest House

Attendees (19)