Meetup #3
Details
We're back, live and excited as ever to host the the third instalment of the Melbourne Cybersecurity Meetup!
Schedule:
- 5:30pm - 6:00pm: Drinks/Pizza & Chats; guests arrive
- 6:10pm - 7:00pm: Intro & Talks
- 7:10pm - 8:00pm: Questions, Conversations, Drinks & Networking
It will be be held at AllSquares HQ - 4-6 Brunswick Pl, Fitzroy VIC 3065
Speaker #1:
Christoph Niehoff - Senior Consultant - TNG Technology Consulting
Christoph studied physics and thought a lot about how the Large Hadron Collider can tell us what the Higgs Boson is made of.
He is working as a Senior Consultant at TNG Technology Consulting in Munich, Germany, focusing on full-stack development and DevOps.
In particular, he loves to think about how to make them secure. He is the project lead of OWASP Cumulus, a serious card game for threat modeling DevOps and Clouds.
Title of the talk: Threat Modeling DevOps
Modern DevOps engineers are responsible for their product's security throughout each and every step of the delivery cycle.
Framing this as "DevSecOps" can be intimidating as it introduces security as "yet another player" in the game and leaves the fact aside that every DevOps should be secure.
In this talk we will discuss threat modeling as a lightweight approach to integrate security into DevOps processes and introduce OWASP Cumulus as a serious game for threat modeling the clouds (i.e. for threat modeling the "Ops" of DevOps)
Speaker #2
Shan Kulkarni - Co-Founder & CEO of Nullify
Shan was a software engineer at Cisco before lecturing cloud security and DevSecOps at the University of New South Wales, then working at an AWS consulting partner to help enterprises mature their secure development strategies.
Following successful stints at the likes of CMD, University of New South Wales & Cisco, Shan branched out and started Cybersecurity/AI start-up - Nullify
Title of the talk: Nullify your Codebase: Scaling Security Ownership through Automation and AI
Today developers are pushing code twice as fast, but in most organisations security engineers are outnumbered 100 to 1 by developers - creating the need for a DevSecOps strategy that enables developers to self-serve security without slowing them down.
Balancing security, velocity and cost has always been a challenge when it comes to DevSecOps - and while shifting security left has helped close the gap - 73% of developers still report that security processes slow down code releases.
During this presentation, Shan will discuss how you can find the right balance for your organisation using Nullify.
Meetup #3