Stu Hirst

Head Of Security Engineering, Photobox

Sponsored By:

Participant's team(s):

Stu Hirst Daily Schedule

MondayTuesdayWednesdayThursdayFriday
KN-2
9:40 - 9:55
Gamifying Security Dashboards
Gamifying Security Dashboards
main-stage
AM-1
10:30 - 12:30
Using maps to define how to capture, detect and prevent 6 real-world security incidents
Using maps to define how to capture, detect and prevent 6 real-world security incidents
Larch room
Time slot over-subscribed
Wardley Mapping – a practical session on how to use value chain mapping
Wardley Mapping – a practical session on how to use value chain mapping
Larch room
Integrating Security Tools in the SDL
Integrating Security Tools in the SDL
Maulden room
Using Jira to handle Incident Response - simulations
Using Jira to handle Incident Response - simulations
DS-2
12:30 - 13:30
Creating ELK Dashboards
Creating ELK Dashboards
Table 1
Implementing the OWASP responsible disclosure Maturity Model
Implementing the OWASP responsible disclosure Maturity Model
Table 3
PM-1
13:30 - 15:00
Hands-on JIRA Schema refactoring
Hands-on JIRA Schema refactoring
Larch room
Agile Practices for Security Teams
Agile Practices for Security Teams
Larch room
Time slot over-subscribed
Using User Story Mapping for effective communication
Using User Story Mapping for effective communication
Larch room
AWS Lambda Security
AWS Lambda Security
Portland room
Time slot over-subscribed
Running CTF Games with OWASP Juice Shop
Running CTF Games with OWASP Juice Shop
314 - Owasp Projects villa
Writing security tests to confirm vulnerabilities and fixes
Writing security tests to confirm vulnerabilities and fixes
Pedley room
PM-2
15:30 - 16:30
Time slot over-subscribed
Lessons learned from public bug bounties programmes
Lessons learned from public bug bounties programmes
314 - Owasp Projects villa
Create Wardley Maps for multiple security scenarios
Create Wardley Maps for multiple security scenarios
Larch room
Owasp Cloud Security Workshop (BETA)
Owasp Cloud Security Workshop (BETA)
Maulden room
Create AWS Security Questions
Create AWS Security Questions
Montague room
Securing AWS S3 Buckets
Securing AWS S3 Buckets
Portland room
Time slot over-subscribed
JIRA Risk Workflow
JIRA Risk Workflow
Portland room
Squad Modelling and Cross Functional Teams
Squad Modelling and Cross Functional Teams
Pedley room
PBX-GS Offsite session 5
PBX-GS Offsite session 5
317 - Photobox villa
PM-3
16:30 - 17:30
Time slot over-subscribed
PBX-GS Offsite session 1
PBX-GS Offsite session 1
314 - Owasp Projects villa
Time slot over-subscribed
PBX-GS Offsite session 2
PBX-GS Offsite session 2
317 - Photobox villa
Security Crowdsourcing
Security Crowdsourcing
313 - DevSecCon villa
Time slot over-subscribed
Integrating Security into an Spotify Model (and using Squads for Security teams)
Integrating Security into an Spotify Model (and using Squads for Security teams)
Maulden room
PBX-GS Offsite session 4
PBX-GS Offsite session 4
317 - Photobox villa
Summit Wrap Up
Summit Wrap Up
    main-hall
    DS-3
    18:00 - 19:00
    Eve-1
    19:30 - 21:00
    Create a Slack bot in Python
    Create a Slack bot in Python
    313 - DevSecCon villa
    Integrate securityheaders.com in CI pipeline
    Integrate securityheaders.com in CI pipeline
    https://os-summit.slack.com/messages/CAUTMJVS5
    Eve-2
    21:00 - 23:00
    Using Threat Models for GDPR
    Using Threat Models for GDPR
    317 - Photobox villa
    Writing Checkmarx SAST rules
    Writing Checkmarx SAST rules
    313 - DevSecCon villa

    Participating sessions details

    TitleDescriptiontypeWhenTimeActing as
    Agile Practices for Security TeamsAgile Practices for Security Teamsworking-sessionTuePM-1participant
    Lessons learned from public bug bounties programmesList of top 10 lessons from bug bounty experts and guidelines on improving bug bounty programmesworking-sessionMonPM-2participant
    JIRA Risk WorkflowThis Working Session should result in an improved JIRA Risk Workflowworking-sessionThuPM-2participant
    Security Championsparticipant
    Security Playbooksparticipant
    CISO roundtable
    Create AWS Security Questionsworking-sessionTuePM-2participant
    Owasp Cloud Security Workshop (BETA)A beta session of the OWASP Cloud Security Workshop (not to be scheduled on the Tuesday)working-sessionMonPM-2,PM-3participant
    Security CrowdsourcingWorking Sessions for Security Crowdsourcingworking-sessionTuePM-3participant
    Creating ELK DashboardsPractical session on creating ELK Dashboardsuser-sessionTueDS-2participant
    Gamifying Security DashboardsKeynote by Ante Gulamuser-sessionTueKN-2participant
    Running CTF Games with OWASP Juice ShopRunning / hosting CTF games with OWASP JuiceShopuser-sessionThuPM-1participant
    AWS Lambda SecurityHow to secure Lambda functionsproduct-sessionWedPM-1participant
    Securing AWS S3 Bucketsproduct-sessionWedPM-2participant
    Integrating Security into an Spotify Model (and using Squads for Security teams)Best practice cheat sheet for integrating Agile Security into the Spotify modelworking-sessionWedPM-3participant
    Integrating Security Tools in the SDLIntegrate security tools as part of CI/CD pipeline to find/fix issues early in SDLworking-sessionThuAM-1, PM-1participant
    Writing security tests to confirm vulnerabilities and fixesHands on session writing security testsuser-sessionThuPM-1participant

    Register as organizer

    To register as an organizer of an session or track:

    • add your name to the organizers metadata field (in this case Stu Hirst)

    Back to list of all Participants