Building a security team without becoming “the bad guy”

•

0 gostou•198 visualizações

Ben Abrams has had various developer roles in his career where security teams got in the way and got bad reputations as the NO team, and now he's in the process of building his own security team. In this Sensu Summit 2019 talk, he'll discuss some tips on avoiding this and engineering seeing security as an asset rather than something to work around.

Tecnologia

How to build a security team without
becoming the “bad guy”.
Follow along at: http://bit.ly/2zz3py0

$ /usr/bin/whoami
● Ben Abrams / @majormoses
● Lead the Infrastructure security team @doximity
● Doximity: Medical Social Network serving over 1 Million medical professionals
● Sensu History
○ 2014: started a pet project to replace Nagios with Sensu
○ 2015: Sensu was in production, started giving back to the community
○ 2017: Became a maintainer for various areas across sensu ecosystem
■ Plugins
■ Chef Cookbooks
■ Slack
■ Documentation
■ OSS Mentorship
○ Maintain 200+ plugins for the sensu community

Where to start
● Tools
● Knowledge
● Monitoring
● Alerting
● Service Ownership
● Triage Risk
● Red / Blue Teams
● Culture

Some Cultural Items
● Transparency
○ Open slack channels
○ SLA on pull request reviews
○ Security monitoring is
available to other teams.
● Make access easier where
possible without compromising
needs. https://sso.tax/
○ Moved 40+ apps to SSO
○ Another 30+ to go
● Incremental Improvement
● Secure By default

“The only secure system is one that does not exist”

Secure By Default
● Automation
○ Chef libraries, and recipes
○ Terraform modules
■ AWS Account Level
● Cloudtrail
● Password Policies
■ Resource Level
● S3
● EC2
● ...
● Monitoring and Auditing are not
afterthoughts

Q&A
● Github / Slack: @majormoses
● Email: me@benabrams.it
● Open Positions at doximity:
○ https://workat.doximity.com/positions

Mais conteúdo relacionado

Mais de Sensu Inc.

Keynote: Sensu as a multi-cloud monitoring control plane

Sensu Inc.

The day to day life of a DevOps & IT Ops engineer should be spent on developing the beautiful products and services you offer your customers and less time operating them. In this Sensu Summit 2019 talk from Moogsoft Sr. Product Manager Adam Frank, you'll learn how Moogsoft & Sensu, along with other monitoring and observability tools, will drive your digital transformation, allowing you to understand the significance of your alerts and the alerts that are correlated, to give you better and faster context of an incident.

AIOps & Observability to Lead Your Digital Transformation

Sensu Inc.

In this Sensu Summit 2019 ecosystem session, Garrett Honeycutt, Principal at Tailored Automation, shares where we are with the Puppet module for managing Sensu and discusses the changes to the module and how users can migrate from Sensu Classic to Sensu Go. He also shows off all the testing surrounding the Puppet module and how they able to uncover issues and contribute back to the Sensu-go project during the GA release (and how that continues).

Ecosystem session: Sensu + Puppet

Sensu Inc.

Herding cats & catching fire: Workday's telemetry & middleware

Sensu Inc.

7 Years of Sensu: Then, Now, and Soon

Sensu Inc.

Applications today are increasingly being designed using a share-nothing, microservices architecture that is resilient to the failure of individual components, even when built atop cloud infrastructure that can suffer infrequent-but-massive outages. Yet we still see many supporting tools for application monitoring, observability, configuration management and release management using a centralized “orchestration” approach that depends on pushing changes to unreliable distributed systems. In this Sensu Summit 2018 talk, Chef's Julian Dunn & Fletcher Nichol give you a primer about promise theory and the autonomous actor model that underlies the design of products like Sensu and Habitat, why it leads to not only higher overall system reliability but human comprehension for easier operations. They argue that you should consider designing all of your applications and supporting systems in this way. They may even show a demo or two to illustrate how inverting the design radically changes the notion of “application release orchestration”, so that you can retain orchestration-type semantics even with an eventually-consistent system design.

Pull, don’t push: Architectures for monitoring and configuration in a microse...

Sensu Inc.

The Sensu Plugin architecture is what make Sensu the rich and extensible monitoring framework that it is. Sensu 2.0 provided us with an exciting opportunity to reimagine the user and developer experience for plugins. Sensu 2.0 assets give us a new kind of flexibility that removes our dependency on system packages and gives us a mechanism for uniformly packaging and shipping plugins to Sensu installations. In this talk from Sensu Summit 2018, Greg Poirier, SVP of Engineering, walks you through assets in Sensu 2.0, our ideas about how assets may impact the community plugins, and what we have planned for Sensu Enterprise integrations as assets.

Assets in Sensu 2.0

Sensu Inc.

More than 41 million users and 74,000 businesses — including 59% of the Fortune 500 — trust Box to manage content in the cloud. They were monitoring this web scale infrastructure with Nagios, and not able to keep up with the rapid pace of change inside of Box. In this talk from Sensu Summit 2018, Trent Baker, Senior Infrastructure Site Reliability Engineer at Box, Inc., tells their migration story from wrestling with management of 350K objects in Nagios – including over 130K checks – to shutting down the last Nagios host roughly a year later.

The Box.com success story: migrating 350K Nagios objects to Sensu

Sensu Inc.

Sensu has become a critical component to keeping the modern visual effects studio of Industrial, Light & Magic in the business of creating the beautiful movies of our world and realizing the dreams we all enjoy on the big screen. In this talk from Sensu Summit 2018, Christopher J. Caillouet, Senior Dev|Ops Production Engineer at Industrial Light & Magic, looks behind the curtain and sees how the intelligence and uptime they gain by leveraging Sensu in the ILM monitoring infrastructure enables reliability and stable delivery within a large scale and geographically distributed set of datacenters.

Project 3M: Meaningful Monitoring and Messaging

Sensu Inc.

For the last two years, David Schroeder, Software Engineer at Viasat, Inc. has supported a single Sensu cluster shared by multiple teams, each with their own requirements, thresholds, and contacts. How does it all work, how can these different uses coexist? This talk from Sensu Summit 2018 describes how Ansible is used to configure and deploy Sensu for multiple teams, how much autonomy is granted each one, and where the bottlenecks are.

Sharing Sensu with Multiple Teams using Ansible

Sensu Inc.

Where's My Beer: Building a Better Kegerator with a Raspberry Pi & Sensu

Sensu Inc.

Reimagining Sensu

Sensu Inc.

In this talk from Doximity's Ben Abrams (from Sensu Summit 2018), you'll learn: - Why alert fatigue is dangerous - How we can solve it - Sensu core components - Filters - Round robin subscriptions - Check dependencies - Check hooks (not strictly alert fatigue but auto triage can really help in general) - Sensu community components auto remediation: use the handler not hooks - External tools for on call management and paging (such as pagerduty) - General tuning - Reduction in noise in alerting (as opposed to monitoring)

Alert Fatigue: Avoidance and Course Correction

Sensu Inc.

In this Sensu Summit 2018 talk, Lee Briggs, Senior Infrastructure Engineer at Apptio, discusses how to monitor Kubernetes components and applications using the classic sensu components. He covers some of the tricks you can use when monitoring Kubernetes resources and cluster components. We’ll cover the kind of things you should and shouldn't monitor with sensu at this stage, as well as some of the lessons learned along the way.

Sensu and Kubernetes 1.x

Sensu Inc.

Sensu and Puppet

Sensu Inc.

Mais de Sensu Inc. (15)

Keynote: Sensu as a multi-cloud monitoring control plane

AIOps & Observability to Lead Your Digital Transformation

Ecosystem session: Sensu + Puppet

Herding cats & catching fire: Workday's telemetry & middleware

7 Years of Sensu: Then, Now, and Soon

Pull, don’t push: Architectures for monitoring and configuration in a microse...

Assets in Sensu 2.0

The Box.com success story: migrating 350K Nagios objects to Sensu

Project 3M: Meaningful Monitoring and Messaging

Sharing Sensu with Multiple Teams using Ansible

Where's My Beer: Building a Better Kegerator with a Raspberry Pi & Sensu

Reimagining Sensu

Alert Fatigue: Avoidance and Course Correction

Sensu and Kubernetes 1.x

Sensu and Puppet

Último

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Architecting Cloud Native Applications

WSO2

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Introduction to use of FHIR Documents in ABDM

Kumar Satyam

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

Six Myths about Ontologies: The Basics of Formal Ontology

johnbeverley2021

JohnPollard-hybrid-app-RailsConf2024.pptx

JohnPollard37

Whatsapp Number Escorts Call girls 8617370543 Available 24x7 Mcleodganj Call Girls Service Offer Genuine VIP Model Escorts Call Girls in Your Budget. Mcleodganj Call Girls Service Provide Real Call Girls Number. Make Your Sexual Pleasure Memorable with Our Mcleodganj Call Girls at Affordable Price. Top VIP Escorts Call Girls, High Profile Independent Escorts Call Girls, Housewife Women Escorts Call Girl, College Girls Escorts Call Girls, Russian Escorts Call girls Service in Your Budget.

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Deepika Singh

Tracing the root cause of a performance issue requires a lot of patience, experience, and focus. It’s so hard that we sometimes attempt to guess by trying out tentative fixes, but that usually results in frustration, messy code, and a considerable waste of time and money. This talk explains how to correctly zoom in on a performance bottleneck using three levels of profiling: distributed tracing, metrics, and method profiling. After we learn to read the JVM profiler output as a flame graph, we explore a series of bottlenecks typical for backend systems, like connection/thread pool starvation, invisible aspects, blocking code, hot CPU methods, lock contention, and Virtual Thread pinning, and we learn to trace them even if they occur in library code you are not familiar with. Attend this talk and prepare for the performance issues that will eventually hit any successful system. About authorWith two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Victor Rentea

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Dubai, often portrayed as a shimmering oasis in the desert, faces its own set of challenges, including the occasional threat of flooding. Despite its reputation for opulence and modernity, the emirate is not immune to the forces of nature. In recent years, Dubai has experienced sporadic but significant floods, testing the resilience of its infrastructure and communities. Among the critical lifelines in this bustling metropolis is the Dubai International Airport, a bustling hub that connects the city to the world. This article explores the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Orbitshub

The presentation was made in “Web3 Fusion: Embracing AI and Beyond” is more than a conference; it's a journey into the heart of digital transformation. The conference a provided a platform where the future of technology meets practical application. This three-day hybrid event, set in the heart of innovation, served as a gateway to the latest trends and transformative discussions in AI, Blockchain, IoT, AR/VR, and their collective impact on the information space.

AI in Action: Real World Use Cases by Anitaraj

AnitaRaj43

Building a security team without becoming “the bad guy”

1. How to build a security team without becoming the “bad guy”. Follow along at: http://bit.ly/2zz3py0

2. $ /usr/bin/whoami ● Ben Abrams / @majormoses ● Lead the Infrastructure security team @doximity ● Doximity: Medical Social Network serving over 1 Million medical professionals ● Sensu History ○ 2014: started a pet project to replace Nagios with Sensu ○ 2015: Sensu was in production, started giving back to the community ○ 2017: Became a maintainer for various areas across sensu ecosystem ■ Plugins ■ Chef Cookbooks ■ Slack ■ Documentation ■ OSS Mentorship ○ Maintain 200+ plugins for the sensu community

4. Where to start ● Tools ● Knowledge ● Monitoring ● Alerting ● Service Ownership ● Triage Risk ● Red / Blue Teams ● Culture

5. Core Cultural Philosophies

6. Some Cultural Items ● Transparency ○ Open slack channels ○ SLA on pull request reviews ○ Security monitoring is available to other teams. ● Make access easier where possible without compromising needs. https://sso.tax/ ○ Moved 40+ apps to SSO ○ Another 30+ to go ● Incremental Improvement ● Secure By default

7. “The only secure system is one that does not exist”

8. Secure By Default ● Automation ○ Chef libraries, and recipes ○ Terraform modules ■ AWS Account Level ● Cloudtrail ● Password Policies ■ Resource Level ● S3 ● EC2 ● ... ● Monitoring and Auditing are not afterthoughts

9. Q&A ● Github / Slack: @majormoses ● Email: me@benabrams.it ● Open Positions at doximity: ○ https://workat.doximity.com/positions

Building a security team without becoming “the bad guy”

Recomendados

Recomendados

Mais conteúdo relacionado

Mais de Sensu Inc.

Mais de Sensu Inc. (15)

Último

Último (20)

Building a security team without becoming “the bad guy”