OWASP STL Meetup, Tues Nov 13th

6:30pm
Food & drinks will be provided.

7pm
Talk 1: Tackling the Risks of Open Source Security: 5 Things You Need to Know

Open Source has become the key building block for application development in today's market, where companies are under constant pressure to accelerate time to market. The increasing adoption of open source components, however, has introduced new security challenges that most teams are not prepared to mitigate in their current posture.

In this session, we will present best practices that security teams should implement in order to enable their developers to harness the power of open source without slowing them down or compromising on security.

Talk 2: Is that robot really what it says it is? Challenges and Practices in DevOps Security

Next-generation IT automation tools like Jenkins, Ansible and Kubernetes are doing the job of privileged system administrators. These robotic actors need access controls just like their human counterparts. Established best-practices such as zero trust, least privilege, authentication, authorization and auditing must apply equally. But the cultures of DevOps and Security often find themselves in conflict. This session will explore ways of finding common ground to secure DevOps workflows without hindering them.

Event Sponsors:
Whitesource Software
https://www.whitesourcesoftware.com/

CyberArk
https://www.cyberark.com/