Application and Cloud Security for Developers
Details
In this edition of the DevOps Stuttgart Meetup, Mathias Conradt will talk about application and cloud security.
Abstract
How can developers secure their (cloud-native) applications while maintaining a good development momentum? Obviously you want to make sure that you won't get compromised when launching your application, but security also shouldn't get in the way of innovation. What do terms like DevSecOps, "Shift-Left", CVE and CWE mean, and how do you actually test applications for security vulnerabilities practically - and even more importantly - fix them? Hint: static code analysis (SAST), software composition analysis (SCA), dynamic application security testing (DAST) are some valid approaches. What are these OWASP Top10 that everybody is talking about? This talk addresses software developers who always wanted to learn about application and cloud security in a nutshell but were always too busy writing business logic.
Bio
Mathias comes with more than two decades of experience in software engineering and project management, with a strong focus on open source technologies. He was a visiting professor on Android development at the University of St. Joseph, Macau/China and ran his own software development company with offices in Germany, Hong Kong and the US for more than 15 years before switching to the vendor side and moving into the cybersecurity space. After focusing on Identity & Access Management at Auth0, he is now a Staff Solutions Engineer at Snyk with focus on application and cloud security.
Contact
Mathias Conradt
Staff Solutions Engineer, Snyk
[mathias.conradt@snyk.io](mailto:mathias.conradt@snyk.io)
https://twitter.com/mathiasconradt
https://www.linkedin.com/in/mathiasconradt/