Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Tuesday, January 24 • 12:00pm - 12:50pm
Twubhubbook: like an appsec program, but for startups

Sign up or log in to save this to your schedule and see who's attending!

It’s 2025. Many of the problems in appsec in <%= current_year %> have mitigations, maybe even solutions. The value of an appsec program is widely accepted as a requirement for any successful company. Yet XSS and other common vulnerabilities are still occupying the time of many engineering teams. Twubhubbook has the benefit of being a new startup: it's mostly a blank slate situation. This is the story of how Twubhubbook rolled out their program without skipping a beat or breaking the bank. The purpose of this imaginary story is to provide practical advice that you can take to a current or future startup (sorry enterprise people) based on the successes and failures of today's startups. 

Speakers
avatar for Brent Johnson

Brent Johnson

Application Security Contractor, GitHub
Brent is a working as an Application Security contractor for GitHub as he finishes a B.S in Computer Science with a minor in Applied Computer Security from the University of Southern California. His primary focus is on application security and he has a strong interest in ways to automate finding vulnerable code during software development. His interest in security was sparked growing up after discovering memory scanners/debuggers and the ways... Read More →
avatar for Neil Matatall

Neil Matatall

Software Developer, GitHub
Neil is a product security engineer at GitHub and a co-founder of Brakeman Pro. He has spent the last 12 years doing mostly AppSec work and is heavily involved in AppSec communities. Previously, Neil has been an engineer at Twitter, a W3C-webappsec group member, an OWASP Chapter leader, and has organized multiple conferences. If you've come across his name before, it's probably been in a content security policy or security automation context.



Tuesday January 24, 2017 12:00pm - 12:50pm
Marion Davies Guest House

Attendees (19)