- AppSec 2.0: Reimagine AppSec with Runtime AnalysisUniversity of San Diego, San Diego, CA
SCA tools (container and dependency scans) generate too much noise. Runtime security tools don’t understand SCA findings, and don’t come in until production. What if you could marry SCA with runtime analysis during dev, test, and prod?
In this session, Kiran Kamity, CEO and Founder of Deepfactor, will discuss how the next generation of AppSec needs to go beyond just integrating static SCA into your CI pipeline, to analyzing insecure behaviors inside running apps and correlating that back to SCA to understand which vulnerable components are actually loaded into memory and used by your application. This new approach to AppSec will detect both known vulnerabilities/CVEs with SCA scans and unknown vulnerabilities with runtime analysis. It will then prioritize known vulnerabilities with runtime correlation of SCA findings. End result: you catch most of the key risks in your app, prioritize the key items your devs need to work on without flooding them with alerts, and remove unused components from your containers to burn down your CVE debt rapidly….and achieve the true mission of AppSec…to empower engineering and security teams to create secure applications.
- Christmas mixerUniversity of San Diego, San Diego, CA
Mixer at USD to close out the year! Come visit and share your favorite memories of 2023 in cyber. We may do a raffle as well as a toy drive, rsvp and stay up to date with what happens.
Hosted by chapter leaders at USD, post game at Balast Point.