Room 2

10:20 - 11:20 (UTC+10)

Talk (60 min)

So long, Secure Coding

If you haven't started to shift left yet, you're late. I mean the whole world has been shifting application security left for about 5 years... especially in the wake of DevSecOps. But have we? Have we really?


If we look at the data, however, from the language we use, the practices we recommend, the posts we make and the frameworks we share - we are still stuck in a world focused on "secure code" when in reality the code itself is only part of the picture when it comes to protecting our data, systems and people.
In this talk, we will examine why we are stuck focused on secure code and how we can move towards secure development instead. Laura will provide practical actions you can take throughout your SDLC, spanning from initial ideas to ongoing systems maintenance and support that you can apply today, whether as an individual team member or across a more complex project.
Let's say goodbye to our dreams of secure code once and for all and embrace the idea of secure systems development.

Laura Bell

With over twenty years of experience in software development and information security, Laura Bell specialises in bringing cyber security into organisations of every shape and size.

She is the founder and CEO of SafeStack Academy, a community-centric online education platform giving developers, testers and architects around the world the skills they need to build high-quality, secure software at speed.

Laura is an experienced conference speaker, trainer, and regular panel member, and has spoken at a range of events such as BlackHat USA, Velocity, and OSCON on the subjects of privacy, covert communications, agile cyber security, and cyber security mindset.