LISA18 has ended
Back To Schedule
Wednesday, October 31 • 9:30am - 10:00am
Securing a Security Company

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Security is hard. Organizations and businesses tend to sacrifice security for speed, which often leads to undesirable security outcomes for organizations. There's good news though: system engineers, administrators, ops professionals of the world are in a unique spot to make security in their organization better! This is especially true for engineers in smaller organizations and startups, because you don't need to be a Security Person™ to make an organization more secure.

In this talk we'll dig into how a security company thinks and acts about security internally - and the lessons you can take away from it. What did we start with? Where are our pain points? Where are we going? We'll talk about threat models, the pain of constraints, how you can get into trouble with cryptography, the importance of UX, vendor assessments and incident response. At the end, you'll have cultural, engineering, and architecture ideas to take back to your organization and implement.

avatar for Patrick Cable

Patrick Cable

Director of Platform Security, Threat Stack, Inc.
Patrick Cable is a Sr. Infrastructure Security Engineer at Threat Stack. He works to ensure the security of the Threat Stack Platform by collaborating with other departments, implementing security tools, and building new technology to make security easier for everyone in the organization... Read More →

Wednesday October 31, 2018 9:30am - 10:00am CDT
Legends Ballroom ABC