SecAppDev 2019 Program
The program for SecAppDev 2019 is complete. There will be two tracks featuring in-depth technical lectures, and a dedicated track with three one-day hands-on workshops.
The in-depth developer-oriented security lectures at SecAppDev are uniqueBook your seat now
Three full-day workshops
SecAppDev 2019 offers three one-day workshops in a third program track. These workshops are accessible to all full course attendees. Additionally, a limited number of workshop-only tickets are also available. More information about tickets is available on the registration page.
Building secure web & web service applications
Jim Manico, Founder and CEO, Manicode Security
Tuesday, February 19th 2019
Abstract The major cause of web service and web application insecurity is insecure software development practices. This highly intensive and interactive 1-day bootcamp provides essential application security training for web application and web service developers and architects.
Target audience: web and API Developers
Whiteboard hacking (aka hands-on threat modeling)
Sebastien Deleersnyder, Application Security Lead, Toreon
Wednesday, February 20th 2019
Abstract Toreon proposes an action-packed 1 day Threat Modeling workshop as taught at OWASP, Black Hat USA and O’Reilly Security conferences. In groups of 3 to 4, participants are challenged to threat model two real-life use cases: a REST-based web application and an on-site IoT deployment.
Target audience: software developers, architects, system managers or security professionals
Securing Kubernetes the hard way
Jimmy Mesta, CTO, Manicode Security
Thursday, February 21st 2019
Abstract This technical course is geared towards defenders. It focuses on the ins and outs of taking containers from a developer’s laptop to production Kubernetes clusters. We cover numerous security 'gotchas' around building a modern cloud infrastructure. Each student will be provided with a production-ready Kubernetes cluster hosted in Google Container Engine (GKE).
Target audience: developers, system administrators, security testers, anyone working with or moving towards Kubernetes