The Radical Future of Application and API Security Testing
OnDemand-2024.08.14-Contrast-LandingPage-1540x660-DO (1)

Sponsored By:

Contrast_Logo_RGB-1
On Demand

Available Now

 

In the future, application and API security testing will be done in production as opposed to in pre-prod. We are on the cusp of a revolution in app and API security testing like the one that occurred for load and performance testing, where it shifts to production.

The way we do AppSec is fundamentally broken today. There's an assumption that there is a time that security gets with the product before it gets to production, which is an old way of thinking.

In this webinar, Larry Maccherone, DevSecOps Transformation Architect of Contrast Security, will discuss why current approaches to application security fall flat and how to apply the principles of DevOps to improve application security practices.

Key Takeaways:

  • Why is it cheaper, more effective, and even safer to do application and API security testing in production?
  • What are the technology, practices, and mindsets necessary to pull this off?
  • What are the risks to this approach and how do you address them?

Register Below to Watch:

We'll send you an email confirmation. 
Larry M-modified

Larry Maccherone

Dev(Sec)Ops Transformation Architect - Contrast Security
Larry Maccherone is a thought leader on DevSecOps, Agile, and Analytics. At Comcast, Larry built and scaled to 600 development teams the Dev(Sec)Ops Transformation program over five years.

In his Dev(Sec)Ops Transformation role at Contrast Security, he's now looking to apply what he learned to guide organizations with a framework for safely empowering development teams to take ownership of the security of their products.
Larry writes code every day. He is the primary author of a dozen open-source projects... one of which gets 1M downloads per month. He believes that if you are going to give advice to developers and development teams you can't just have done it at some point in your career. You have to be doing it now. He’s not just talking the talk. He’s also walking the walk when it comes to developer-first security.