Learn how to design organizations that manage risk
Accepting submissions
Not accepting submissions
We are accepting talks on the following topics:
Content will be peer reviewed by industry practitioners.
Jan Hecking Author Guardrails for the Data EconomyBorneo is a real-time data security and privacy observability platform for hyper-growth businesses and builds tools that empower companies to protect their customer’s data. It enables one to identify, understand, and remediate sensitive data risk at cloud scale, as well as automate governance for data warehouses. more
|
|
AK
Ashwath Kumar 
Amit Mahbubani Hold the Door! DDoS Mitigation at Razorpay ScaleRazorpay serves over 200K API requests per minute during peak hours on any average day. DDoS attacks on B2B APIs like ours are fairly complex to detect and mitigate. They typically lead to an extreme spike (10X-100X) in request volume thereby choking critical resources, and hence have the potential to impact our services. In order to guarantee a good quality of service to our customers, we’ve mad… more
|
Answer Key Security Questions by Building an Automated Asset InventoryWe cannot protect what we don’t know exists. A key part of building security into our products is to make key security decisions based on data and not intuition or tribal knowledge alone. In Razorpay, we have hundreds of microservices deployed across multiple EKS clusters, some of which deploy multiple times each day. Any manually built inventory will be out of date within a few hours. In this ta… more
|
Responding to Lo4J RCE using Honeypots, Simulation and WAF rulesThe Log4J RCE took all of us by surprise last December. The ubiquity of the library, the impact of the exploit (full server control), and ease of exploitation made it the perfect storm for DevOps and Security professionals. more
|
Hosted by
Supported by
