Track Talk W12

The Security Manifesto

Keith Yorkston

15:30-16:15 CEST Wednesday 8th June

In early 2001, against the backdrop of the Wasatch Mountains, in Snowbird, Utah, 17 people met to discuss the future of software development. The group’s members shared a frustration about the current state of affairs, even if they disagreed about how to remedy the situation. From this meeting, the Agile Manifesto was born.

Today, we are faced with a similar situation. Security in our online world seems so vast that most people don’t know where to start. And yet we are all responsible for the security of our organisations. We spend significant amounts of time and money securing our data with new technology solutions, at the same time forgetting the key vulnerabilities – the people who work there! Almost every attack on organisations today targets the people in some way and yet most organisations do very little to defend against this.

The Security Manifesto (sorry Agile) gives everyone the first steps into the security mindset – the way of thinking needed to move from security being the “technical” problem of a few specialists. We touch on cyberpsychology – how attackers use the way we think against us and how we can defend against this. And how, as testers, we can test this!

Everyone is vulnerable. If you attend this session, you will be hacked! But you will also learn how it is done, and how you can protect yourself and your organisation with a the Security Manifesto.