Security Does Not Need to Be Fun: Ignoring OWASP to Have a Terrible Time

The presentation discusses the importance of understanding and implementing cybersecurity measures in software development, with a focus on the OWASP Top 10 vulnerabilities and the use of cheat sheets.

• The OWASP Top 10 vulnerabilities are a standard awareness document that outlines the most common ways web applications are attacked and how to prevent them
• Cheat sheets are quick reference guides for various security topics that can be used to provide a thorough overview of a topic in a short amount of time
• Several examples of major security breaches are provided to illustrate the importance of implementing cybersecurity measures

The presentation highlights several major security breaches, including incidents at Toyota, Cash App, Uber, Samsung, and the Apache family, to emphasize the importance of implementing cybersecurity measures in software development.

Everyone loves getting security exactly right, every time for their applications. Identifying issues and possible gaps early in the design phase makes implementing security best practices a breeze. No doubt you have been working safely, employing checklists and testing throughout the code delivery process. As hard as it might be to imagine, some teams are actively struggling with security throughout the SDLC. For folks who might not have security completely honed in, it can be overwhelming to even know how to start thinking about security for your web applications. Fortunately, there is an awesome nonprofit community of security-focused professionals who have done a lot of work making it straightforward to correctly design and implement secure apps: Open Web Application Security Project, aka OWASP! This talk will guide you through various tools OWASP makes freely available to test your application and make sure your apps stay secure.