DevLead Summit

Wednesday, November 17, 2021

- CST
OPEN TALK: Developer-First DAST: The Missing Tool in Your AppSec Toolkit
Join on Hopin
Oliver Moradov
Oliver Moradov
NeuraLegion, VP

To truly scale application security testing, developers need to maintain their role in the security process beyond SCA and SAST, continuing the automation you are already achieving and rely less on manual testing.

Traditional DAST scanners are a blocker to this automation. They are hard to use, impossible to integrate, not developer friendly and produce too many false positives. This results in crippling human bottlenecks that stifle CI/CD, whether it's the need for security to constantly tweak scanners or the drain of manually validating vulnerabilities.

Either way, technical and security debt is compounded, resulting in insecure product hitting production. Change is needed, and fast.

In this session with you will discover:

1. Key features that your dev-first DAST needs to enable developers to take ownership of security

2. How you can detect, prioritise and remediate security issues early, automated in the pipeline

3. Insights into reducing the noise of false alerts to remove your manual bottlenecks to shift left

4. Steps you can take to achieve security testing automation as part of your CI/CD, to test your applications and APIs.

- CST
What I Wish I Knew about Security When I Started Programming
Join on Hopin
Allon Mureinik
Allon Mureinik
Synopsys, Senior Manager

Eighteen years into my career, I decided to pivot and move from infrastructure-related work to the world of application security. If there’s one thing I’ve learned in the three years of working in application security is that it’s a funny business. Our entire business model is based on pointing out the mistakes of other programmers. In this talk, I want to shoot myself in the foot and share some concepts that could help eliminate a lot of those mistakes, and reduce my job to snuffing out the more interesting mistakes.

- CST
Building Security Champions
Join on Hopin
Tanya Janca
Tanya Janca
We Hack Purple, CEO and Founder

With security teams being vastly outnumbered many organizations have responded to this challenge with different program scaling methods, including building security champions programs. Which leads us to questions; How does a security champions program work? How do you select your champions? And once you have them, what do you DO with them? This session will teach you;• How to attract the right people to your program • What and how to train them • How to engage them, and turn them into security advocates • What do delegate and what NOT to delegate • What to communicate, how often and to who • How to motivate them • How to build an AMAZING security champion program Recipe for success; recruit, engage, teach, recognize, reward, don’t stop.

- CST
From Zero to Monitored
Join on Hopin
Ajuna Kyaruzi
Ajuna Kyaruzi
Datadog, Technical Evangelist

This talk will cover some of the basics of how to get started with metrics and getting your simple web application to have monitoring. Not only will we cover which metrics are best for SLIs and when and what your SLOs should be, but also when to incorporate logs and tracing, as well as metrics. Participants will expect to know some observability basics and how to use the monitoring to understand system health and avoid some potential incidents.

- CST
Why a Diverse Team is Crucial to Startup Success
Join on Hopin
Melissa Jurkoic
Melissa Jurkoic
Chief Customer Experience Officer devoted to improving the human experience and empowering women in tech

Team diversity refers to differences between members of startup team. Those differences can include demographic differences (like age, race, sex, ethnicity), personality (extrovert, introvert, and differing Myers-Briggs types) and functional (as in skill sets, like engineering, design, copywriting, and marketing). How does team diversity impact your customers' experience from the moment they learn about you through their journey with you? You will attract and relate to customers how look like you. They will understand your messaging and you will understand their needs. If you don't represent the right dimensions of diversity, you are leaving an amazing experience behind.

- CST
Equitifying Your Interview Process
Join on Hopin
Casey Schlotter
Casey Schlotter
Clever, Engineering Manager

If you're on a quest to significantly improve your diversity, equity, and inclusion efforts at your organization, this talk is for you! We'll specifically focus on how to ensure your interview process is equitable by looking at specific parts of the interview process. You'll leave the session with actionable takeaways to implement at your organization. Building an equitable interview process can be time consuming and challenging, but it paves the way for your organization to make strides towards a truly diverse, inclusive, and equitable workplace.

Thursday, November 18, 2021

- CST
Digital Banking an Austin Fintech's Evolution
Join on Hopin
Todd Ginsberg
Todd Ginsberg
Netspend, Platform Architect
Keven Coggin
Keven Coggin
Netspend, Director of Application Development
Laura Pearce
Laura Pearce
Netspend, Director of Product Management - Embedded Finance
Kalpana Mullapudi
Kalpana Mullapudi
Netspend, Technical Director
- CST
BrainDB: An Abstraction of the Manager’s Brain into Databases
Join on Hopin
Dror Davidi
Dror Davidi
AppsFlyer, R&D Group Manager

Managing one developer is not the same as managing several developers, and it is certainly much different than managing a dozen developers. At each step of our evolution as managers, we are required to acquire new sets of tools in order to process, store, fetch and optimize the way we handle and consume information around us. Similarly, when solving complex engineering problems, various sets of database combinations are needed in order to provide optimal solutions. In this talk I’ll show the correlation between the manager’s brain and its database-like abstraction, promoting a crossover between these worlds which may help you scale up your managerial skills.  

- CST
The Importance of Visuals in Teaching Code and Reducing Bias
Join on Hopin
Tadeh Hakopian
Tadeh Hakopian
HMC Architects, Design Technologist

Python can be taught line by line but not everyone is comfortable with purely text and logic based explanation of coding. The current status quo is to teach showing lines of code with inputs and outputs though a lot of visual learners aren’t going to easily grasp that. What if there was a way to communicate the code concepts with images? This talk will show how using geometry and modeling can acclimate novices to coding concepts using visual-spatial examples reinforced by coding concepts applicable anywhere.

Outline:

* Problems with how Python is currently taught
* How people use visuals to learn
* Demonstrating code with the visual medium
* Visual scripting options like Rhino Grasshopper, Revit Dynamo and others
* This editors can take code and display it diagrammatically and geometrically
* Grasshopper - https://www.rhino3d.com/6/new/grasshopper
* Dynamo - https://primer.dynamobim.org/01_Introduction/1-2_what_is_dynamo.html
* Getting people to go from visuals to text coding

* Get a different take on how to communicate coding to beginners and non-technical folks

* See the options for non-textual python coding

* How to use diagrams to communicate coding concepts

* Using Visual scripts to code 3D objects to demonstrate to learners how the code works in a fun way

- CST
Change Is A Sport: Getting Yourself, Team, and Business Out Of Deadlock
Join on Hopin
Zen Magnani
Zen Magnani
Logicworks, AWS Platform Engineer

Machines are only capable of doing what they've been programmed for. Programs are only as good as the person who created them. And people are only as good as they believe themselves to be.  Most people would like to achieve different results than they are today, across many areas - at work, at home, in their relationships. Achieving a change in results is a science; but getting people to believe that they are capable of change is a sport.  Good leaders get people to believe in them. Great leaders get people to believe in themselves. This talk will address how to find limiting beliefs for yourself and blind spots for your team, and provide a method for changing the outcome of those blockades.