Loading…
AppSec California 2020, January 21-24 at the Annenberg Beach House, Santa Monica, CA
Back To Schedule
Thursday, January 23 • 4:20pm - 5:10pm
Scaling Up Is Hard To Do (Down dooby doo down down) - The Threat Modeling Cover

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
It is no secret that Appsec is hard to scale. We never have enough people, our methods and tools tend to be heavy, the training is lacking and sometimes we feel that the only way out of the security debt hole is to throw more people at it.

In this talk we would like to share the experience we have had with Continuous Threat Modeling applied to product teams over the last year, where it works and where it breaks, and what we are doing to solve the breakage in a way that scales up and allows the process to flow while keeping the sanity of the AppSec team.
Speakers
avatar for Izar Tarandach

Izar Tarandach

Sr. Staff Engineer
Long-time security practitioner, currently a Sr. Staff Engineer, previously Principal Security Engineer at Squarespace, where he also acted as (Interim) Head Of Security. With experience ranging from Bridgewater Associates to DellEMC via RSA, Autodesk, startup founder, investor and... Read More →
avatar for Allison Schoenfield

Allison Schoenfield

Application Security Engineer, Autodesk
Allison Schoenfield is from Berkeley and also attended UC Berkeley, but is now a San Franciscan. She works as an Application Security Engineer at Autodesk. She enjoys threat modeling and working in partnership with developers to secure applications. Previously, she worked as a security... Read More →

Schoenfield Tarandach Scaling Up Is Hard to Do The Threat Modeling Cover FINAL pdf
Thursday January 23, 2020 4:20pm - 5:10pm PST
Sand and Sea Room
  Talk: Protect It