SEattle, WA | July 11, 2024 | 9am - 1pm
Dive into an interactive forum with top security and engineering minds in 2024, exploring pivotal challenges and cutting-edge solutions for the protection of modern applications and APIs.
The 2024 API and Application Security Summit, making its debut in Seattle, brings together a distinguished panel of security leaders for a series of insightful talks. This premier event focuses on protecting modern applications and APIs, constructing solid security programs, and tackling the emerging threats of 2024.
Venue:
The W Seattle,
1112 4th Ave, Seattle, WA 98101
Who Should Attend:
CISOs and security leaders
Application and Product Security Teams
DevSecOps
Key Takeaways:
Understand the latest security threats and vulnerabilities in API and application security
Learn best practices for securing your systems and data
Hear from industry experts and thought leaders on their experiences and insights
Network with peers and build valuable connections in the industry
9:00 am - 9:30 am
Registration and Breakfast
9:30 am - 10:00 am
Session 1: A quick introduction to non traditional API attacks
George K. Wang, Security Engineering Architect at Auth0 by Okta;
A masterclass into how to design API and consume API securely.
10:00 am - 10:45 am
Session 2: Security Leader Panel
Join a group of security leaders and practitioners as they share practical insights on how they are tackling product security this year.
Andrew Becherer, Ex CISO of Datadog, Iterable
George K. Wang, Security Engineering Architect at Auth0 by Okta
Peter Oehlert, Chief Security Officer, Highspot
Chaim Sanders, CISO, Lyft
Aaron Blankenbeker, Director, Information Security at Tradeweb
10:45 am - 11:00 am
Coffee and Networking Break
11:00am - 11:45 am
Session 3: From Blind Spots to Insights: Building AppSec Visibility
Kurt Boberg, Staff Security Researcher, Semgrep
Kurt will discuss common pain points in early AppSec programs and low-effort, high-ROI methods to boost visibility and effectiveness using open-source or existing commercial tools. Often outnumbered by developers and product teams, AppSec engineers receive minimal notifications about critical changes and must be creative to automate the review of Jira tickets, PRs, and internal wikis. Kurt will share the blueprint he developed to build AppSec visibility at companies like Docusign, Chegg, and Semgrep.
11:45 pm - 12:15 pm
Session 4: Best Practices in API Security - Wallarm Demo - by Tracy
12:15 pm - 1:00 pm
Lunch and Networking
Make sure you RSVP and slither your way to the event so you can collect our sticker pack based off the new OWASP API Security Top-10 list. Follow the slimy, sneaky, and stealthy snek as it looks for ways to exploit your APIs – and beware the surprise twist in its tail! A little snek said there might even be some other goodies for you to take home from the event as well.
RSVP to our event to be entered to win a raffle for a Nintendo Switch.
Here's how it works: by simply attending our event, you will automatically be entered into the draw to win the Nintendo Switch. It's that easy! No complicated entry forms or requirements – just your presence at the event puts you in the running for this fantastic prize. We’ll see you there!
