This talk will be about how to secure Software-as-a-Service (SaaS) applications and well as secure consumer applications that were not designed for enterprise use. The basics of SaaS, including the business benefits and security/compliance risks, will be introduced, as will be federation, the single most important SaaS security control aside from the contract. After tackling the challenges of SaaS, the speaker will discuss securing consumer applications (e.g. eBay, Skype, SurveyMonkey) for enterprise use.
- What is Software-as-a-Service (SaaS)?
- How do you secure SaaS?
- Can your organization securely use consumer applications?
About Chad Walker
Chad Walker is a security professional with experience at really, really big retail companies, only some of which have suffered major breaches. He has a handful of certifications (CISSP, CIPP/US, OSWP) and has a Master of Science in Security Technologies from the University of Minnesota. He began his information security career slinging security requirements at developers who mostly ignored him, but has since moved into security operations, hunting POS malware like he was Captain Ahab. While he still has much to learn in the information security space, he is probably the best forklift operator you have ever met. He is the author of Cryptomancer: A Fantasy Role-Playing Game about Hacking.