Saddle up and meet the DefectDojo team at LASCON in Austin. We have a full slate of activities at the event, including sponsoring the mechanical bull! Here's where you can find us:
- Training: OWASP in Action: ASPM in OWASP Projects (Wednesday 10/23 9:00 am - 5:00 pm)
Tracy Walker & Cody Maffucci
Abstract:
If you are facing the challenge of Application Security Posture Management (ASPM) amidst a plethora of applications and issues, this course is designed to streamline the process using OWASP’s open source projects, optimized for DevSecOps workflows. Over the span of two days, you’ll engage in interactive lectures and labs that showcase the effective application of OWASP tools, as previously implemented by seasoned AppSec teams. Recognizing that the size of AppSec teams is often a limiting factor, the course emphasizes automation of routine tasks to free up your time for more complex problem-solving. Upon completion, you will be equipped with a comprehensive set of strategies and tools to enhance your AppSec initiatives through automation and the integration of OWASP projects, all delivered at DevSecOps pace. The instructors, with over two decades of industry and OWASP project experience, offer practical, proven guidance for achieving success in ASPM.
- Ride the Bull (Thursday 10/24 at 5:00 pm)
The mechanical bull is back again for another year at LASCON!
Come watch or try your skills to see if you have what it takes (though the bull operator will take it easy on newbies). Our intrepid sales executive, Abbey, will be leading the festivities. Stop by and pick up Dojo stickers.
- Speed Debates hosted by Matt Tesauro (Thursday 10/24 at 5:00 pm)
- Featured talk: Having ASPM Your Way: How to Avoid the Trough of Disillusionment by Matt Tesauro (Friday 10/25 at 10:00 am)
ASPM seems to be everywhere these days. Has AppSec pivoted into a brave new world or is this just a new “acro-Gartner-nym” that we now have to deal with? What does ASPM look like from someone who’s AppSec career started before AppSec was a job description? This talk looks at what the market says about ASPM and fires it in the crucible of experience to see what is left when the heat is gone. Gain practical, front-line advice on how to take the best of what ASPM has to offer and adapt it to the situation you face in your day to day AppSec life. Learn how to leverage the buzz around ASPM to make your life better and survive the hype cycle.