Taking Security Seriously

Billions of breached records. Millions paid in bug bounties. Thousands of unpatched vulnerabilities. Yet, almost every post-breach message is adamant about stating that security is taken seriously. Making fun of these security failures is nothing short of counter-productive arrogance. Instead, we should strive to give real meaning to "taking it seriously". In this talk, we take an honest look at the current security landscape. Using plenty of real-world examples, we dive into the dangers applications face today. We investigate the underlying problems and the struggles developers face when building secure software. You will walk away from this talk with actionable advice on improving your current security practices. **What will the audience learn from this talk?**<br> * An analysis of several major threats in the modern application security landscape. * An overview of defences and best practice * Actionable advice to build and improve secure development practices **Does it feature code examples and/or live coding?**<br> The slides will refer to examples, but no live coding. **Prerequisite attendee experience level:** <br> [Level 200](https://gotober.com/2019/pages/experience-level)