While it focused on (and was described as covering) basic concepts, I would have liked some more practical takeaways such as specific actions I could take to investigate and uncover necessary evidences in event of a compromise. I realize that's a little more complicated to deliver, and would be a more advanced-level talk. As someone who has spent a lot of time tweaking servers and processes for PCI compliance, and monitoring attacks on various servers, I left feeling like I wanted more.
Nevertheless, an attendee with limited devops exposure or limited time spent considering security, this talk is an excellent way to get people thinking and starting important conversations amongst team members for both developers and operations teams.
This talk was not what I expected, though it was still extremely valuable. It was more about what to be "afraid of" rather than getting deep into how to solve those problems. A great checklist for security issues you might not always think of.
Michelangelo gave a very complete and realistic perspective on the security concerns of modern web applications and is a speaker who really knows what he is talking about. I enjoyed the progressive perspective that he spoke from having to deal with the strict data security requirements in European countries. Security is a very relevant topic for all software organizations and I only wish that more developers could have seen this talk.
Comments
Comments are closed.
Very interesting subject. Very good delivery!
This talk covered a lot of bases.
While it focused on (and was described as covering) basic concepts, I would have liked some more practical takeaways such as specific actions I could take to investigate and uncover necessary evidences in event of a compromise. I realize that's a little more complicated to deliver, and would be a more advanced-level talk. As someone who has spent a lot of time tweaking servers and processes for PCI compliance, and monitoring attacks on various servers, I left feeling like I wanted more.
Nevertheless, an attendee with limited devops exposure or limited time spent considering security, this talk is an excellent way to get people thinking and starting important conversations amongst team members for both developers and operations teams.
This talk was not what I expected, though it was still extremely valuable. It was more about what to be "afraid of" rather than getting deep into how to solve those problems. A great checklist for security issues you might not always think of.
Very interesting talk on the importance of considering security issues when developing apps. Thanks!
Michelangelo gave a very complete and realistic perspective on the security concerns of modern web applications and is a speaker who really knows what he is talking about. I enjoyed the progressive perspective that he spoke from having to deal with the strict data security requirements in European countries. Security is a very relevant topic for all software organizations and I only wish that more developers could have seen this talk.