True Story of Implementing SecDevOps in FinTech

True Story of Implementing SecDevOps in FinTech

説明:

In the Financial industry, Application Security is often underscored by the focus on compliance issues - until an incident happens. After a recent hack of a bank in Pakistan, all the Security Personnel, Information Security Assessment Companies were choked with their limited resources. This is when they jumped on the opportunity to Implement, and then market DevSecOps to the greater market. We implemented the fundamentals of Application Security, starting from the basics of Application Security Scanning (SAST / DAST), to systems hardening, and ultimately take on PA-DSS audits head-on. We then successfully implemented automation across all security efforts.

講演者:

Salman Khwaja

Manager Application Security, TPS Pakistan Pvt. Limited

Patch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo Segment

Snyk (スニーク) は、デベロッパーセキュリティプラットフォームです。Snyk は、コードやオープンソースとその依存関係、コンテナや IaC (Infrastructure as a Code) における脆弱性を見つけるだけでなく、優先順位をつけて修正するためのツールです。世界最高峰の脆弱性データベースを基盤に、Snyk の脆弱性に関する専門家としての知見が提供されます。

無料で始める資料請求