2960 Cobb Parkway Southeast, Atlanta, GA
The big talk in enterprise is about ‘defensible’. Smart people all over are starting to realize that ‘secure’ isn’t realistic, and spending too much time on ‘prevention’ can in fact be dangerous. With that in mind, let’s start to think about how we can build ‘defensibility’ into software, and the systems that support it. Taking a DevOps type approach to development is a good start, but what are the other things to consider?
This talk will be a short presentation followed by facilitated open discussion so bring your ideas, your challenges, your experiences, and your developers … let’s start to work towards defensible software.
Rafal Los, Principal, Strategic Security Services, with HP Enterprise Security Services, brings a pragmatic approach to enterprise security. Combining nearly 15 years of technical, consulting and management skills in Information Security, Rafal draws on his extensive experience to help organizations build intelligent, defensible and operationally efficient security programs. He is an advocate for focus on sound security fundamentals and for the principles of "right defenses, right place, right reason". He is also a contributor to open standards and organizations - volunteering his time to groups such as OWASP and the Cloud Security Alliance. His blog, Following the White Rabbit, is his unique perspective on the various aspects of enterprise security, emerging technologies, and current events and can be found at http://hp.com/go/white-rabbit.
Prior to joining HP, Los defined what became the software security program and served as a regional security lead at a Global Fortune 100 contributing to the global organization's security and risk-management strategy internally and externally. Rafal prides himself on being able to add a 'tint of corporate realism' to information security.
Rafal received his B. S. in Computer Information Systems from Concordia University, River Forest, Ill.