Raúl Piracés y Diego Rodríguez | Desarrollo seguro para Muggles

Описание: In a world in constant evolution, we find ourselves surrounded by terms such as security, risk and vulnerability. Words that are part of our daily reality, along with concepts such as CORS, XSS and similar. In addition, we witness the emergence of new certifications, industry regulations and data protection laws. All this forces us to integrate and strengthen security at all stages of our software development. This need arises as a response to the increase of attacks and vulnerabilities that year after year affect the software industry. Faced with this situation, an interesting proposal arises: to implement the culture of "Shift Left Security". In other words, incorporating security from the initial stages of development, which translates into a reduction in costs. And how to achieve this? By identifying and addressing vulnerable code before it even reaches our main development branch. In this session, we will explore various ways to adopt this culture in our day-to-day work, from a practical perspective. We will rely on tools, frameworks and best practices defined by leading institutions and companies in the industry. With what objective? To improve the security of our developments, reduce the attack surface and solve the most common problems. All of this, with the purpose of providing a solid security foundation with the least possible effort. After all, the ultimate goal is to preserve the integrity of our data and products, preventing them from being compromised and our name from being linked to headlines related to security breaches.