Modern WebAppSec techniques can be used to secure websites with minimal efforts and reduce the time and cost spent dealing with security vulnerabilities. This talk presents seven practical steps that every engineer can adopt, and shows tools and techniques developed at Mozilla to protect the security of Firefox’s backend websites and services.
DevOps security expert and engineering manager with over 15 years of experience in large organizations and web companies. Currently responsible for the operational security of Firefox’s backend infrastructure at Mozilla. Author of Securing DevOps, published at Manning in 2018.