Jeff Williams - Keynote

Co-Founder and Chief Technology Officer Contrast Security


Jeff brings more than 20 years of security leadership experience as co-founder and Chief Technology Officer of Contrast. In 2002, Jeff co-founded and became CEO of Aspect Security, a successful and innovative consulting company focused on application security. Jeff is also a founder and major contributor to OWASP, where he served as the Chair of the OWASP Board for 8 years and created the OWASP Top 10, OWASP Enterprise Security API, OWASP Application Security Verification Standard, XSS Prevention Cheat Sheet, and many other widely adopted free and open projects. Jeff has a BA from Virginia, an MA from George Mason, and a JD from Georgetown.


Abstract

Rethinking AppSec:  Using Security Instrumentation to Find Vulnerabilities and Block Attacks

Security is so frustrating. Why can't they just tell us what they need in advance instead of pointing out our mistakes after the fact. Why can't security work the same way as quality, performance, etc... In this talk, Jeff will show you how to take control of security by turning it into code. He'll provide real examples of how you can instrument your software for instant feedback on vulnerabilities during development and attacks in production no scanning, no PDFs. He'll also show how you can receive security alerts through the software toolchain you're already using, just like any other kind of quality or performance issue. With continuous application security, you'll fix issues early, before they get expensive. You'll also be able to push code into production faster, without waiting for the security bottleneck. Security can be interesting and fun let's stop wrecking it!