Foundational lessons in application security

Join us for an insightful session examining how foundational lessons in application security remain just as relevant today as when Mark Curphey and John Viega introduced them in 2006. This talk will cover:

• Corporate Environment Focus

• Approaches to app development in large organisations

• Common pitfalls in development, lifecycle management, and security monitoring

• Key Risks and Recurring Problems

• Historical and modern examples of vulnerabilities

• Why ‘all that is old is new again’ in AppSec

• Strategies for Improvement

• Practical solutions derived from longstanding security principles

• Lessons learnt on our own AppSec journey

• Blending management perspectives with hands-on technical insights
  Expect a pseudo-technical deep dive into building, testing, and maintaining secure applications in complex corporate setups. You’ll walk away with renewed appreciation for established best practices, along with actionable tips to modernise and strengthen your own security lifecycle.