Lambert has more than 20 years of experience in the information security and currently serves as the VP of Docutek Solutions. Having obtained the CISSP Certificate for nearly 20 years, he is committed to simplifying and popularizing information security, and bringing risk management concepts into information security management and defense. We know that hackers are always in the dark, and the threats to information security change so fast that often defense technologies may not be watertight. People are an important line of defense for information security. For enterprises, the only way is to continuously invest in improving all employees. Only with a better understanding of information security and risk awareness can we effectively respond to ever-changing information security threats and risks.
In the development and maintenance of application systems, information security has become a necessary item. Therefore, the goals of Security by Design have become increasingly clear, and the team has gradually reached a consensus. The earlier the development stage of the system, the earlier security will be included in the design. Overall The cost is lower. However, in the process of digital transformation, the old system already exists, and maintenance and operation have to be worried about, and loopholes are constantly being discovered, and they have to be repaired in a hurry. In the process of pursuing agile development, the information security team, R&D team, and maintenance team have different perceptions of each other, resulting in team conflicts. This agenda explores how to use automated security tools to meet security needs at all stages of SDLC and CI/CD, and explores successful cases of best practices.
CYBERSEC 2024 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy 。