BEGIN:VCALENDAR
VERSION:2.0
PRODID:jquery.icalendar
BEGIN:VEVENT
ORGANIZER:MAILTO:info@circlecitycon.com
TITLE:A Shock to the System:  Static Analysis for Real AppSec
DTSTART:20210613T180000Z
DTEND:20210613T185000Z
SUMMARY:A Shock to the System:  Static Analysis for Real AppSec
DESCRIPTION:Static analysis (SA) is one of the few techniques that provides a low-level examination of source code. When SA is combined with DevOps automation and traditional pentesting, it can offer valuable insights that help with implementation and remediation efforts. Ineffective use, however, overwhelms development teams with false positives and causes dysfunctional communications with security teams. This talk goes over several toolkits for static analysis based on language and tech stack. After that, we will talk about how to use automation to create workflows for developers and application security engineers. We will conclude with cultural transformations needed to make effective use of these tools and techniques.
LOCATION:Twitch Track 2
END:VEVENT
END:VCALENDAR