Have you seen a fire breathing dragon dual wield My little pony figurines? How about an IT Security employee with a burning passion for keeping users say, security fun and accessible? Siren Hofvander delivers on the latter and strives for the former in her daily job as CSO for Min Doktor -responsible for the security of not only the patient data but also the service itself. She is an expert of embedded security and specialises in building security into the SLDC and firmly believes that security is a task for everyone, not just the hacker elite. She also heads up the Malmö based IT Security group SecuriTea and is an avid forum contribution.
Why is it that when a security person says ‘we should validate our inputs’, developers usually run away screaming about the unreasonably huge amount of work that requires? Why is it that when a developer says they ‘just made a quick hack to get things working’, security people start getting a panicked look in their eyes? What is it about Security and Development that the fields are so closely linked, yet nobody seems to understand each other clearly? Security and developers actually want the same thing, but due to a difference in terms and ways of seeing the world, good solutions are often missed.
Welcome to this talk, featuring a developer and a security pony trying to bridge the gap, and find a better way forward together.