April Meetup

Our April Meetup is hosted by Check Point at their San Carlos location.

Please note: You will be required to show picture ID to enter the building.

Location
Check Point Software Technologies 959 Skyway Rd #300, San Carlos, CA 94070

Agenda
5:30 - Doors open
5:30 - 6:00 Food and drinks, networking
6:00 - 6:45 Ryan Rasmuss - Leveraging ML/AI to advance Application Security
6:45 - 7:30 Kiran Kamit - Reducing Alert Fatigue with Container Scans: Correlate, Prioritize and Filter Based on Usage
7:30 - 8:15 Jim Downey - Why are malicious bots still so difficult to mitigate?
8:15 - Close

We will have three talks this month

Talk 1:
Leveraging ML/AI to advance Application Security

Description:
Web Applications and APIs are always vulnerable to new CVEs and victim to constant probing of threat actors. When a new vulnerability is released, we have to identify if our application is susceptible and then build a rule(s) to protect against these exploits. Pair this with applications and APIs that change with every release and we are left feeling uncertain.

In today's session we will deploy open source tools that leverage machine learning for web applications and APIs. These tools will help us learn about our applications and automatically apply the relevant protections. We can also learn about new exploits in the wild before an official CVE is released.

Speaker:
Ryan Rasmuss has been working as a security engineer for Check Point Software Ltd for about 5 years. During that time he’s focused on Application Security and Threat Intelligence. Outside of work he’s a big fan of local CTFs, golf, and camping!

Talk 2:
Reducing Alert Fatigue with Container Scans: Correlate, Prioritize and Filter Based on Usage

Description:
Today, developers and devops engineers are being asked to address vulnerabilities and apply chain risks in container images. However, the volume of noisy security alerts often leads to developers ignoring them entirely or wasting valuable sprint time researching “false positives.”
This session will focus on how engineering teams can correlate vulnerabilities with runtime information, prioritize alerts based on usage, and filter out false positives that don’t represent a true exposure of a vulnerability. Prioritizing security updates to only used packages in your container image is a highly effective approach to reducing alert fatigue with your container scans. In addition, your DevOps team can even consider removing some of the unused packages and shrink your container images. As an example, this session will include a demonstration of a typical SCA static container scan of a sample open-source test application and then show how an engineering team can filter alerts to reduce the number of vulnerable and used alerts that actually need to be fixed by developers by up to 90%.

Speaker:
Kiran Kamity is the Founder & CEO of Deepfactor. He is a serial Silicon Valley entrepreneur with a passion for building products that meet a need and make a business impact—with Deepfactor that’s empowering engineering teams to create secure cloud native applications. Prior to Deepfactor, Kiran was the Head of Product at Cisco Cloud BU, Founder/CEO at ContainerX (acquired by Cisco), and the Founder/VP at RingCube (acquired by Citrix). Kiran is a TEDx speaker and loves nature, travel, and food

Talk 3:
Why are malicious bots still so difficult to mitigate?

Description:
The first anti-bot technology, CAPTCHA, was developed over 20 years ago, yet bots are still buying up concert tickets, ruining sneaker launches, taking over bank accounts through credential stuffing, and costing organizations tens of millions of dollars in fraud and lost revenue. Let’s learn why bots are still so difficult to mitigate, what techniques no longer work, and what it takes to effectively mitigate bots to keep your customers safe.

Speaker:
Jim Downey evangelizes app security for F5, which offers a comprehensive app security stack across data centers, edge, and multi-cloud. Formerly a Director of Engineering at Shape Security, acquired by F5, Jim focuses foremost on defending web, mobile, and APIs from malicious bot attacks.