#BHUSA Keynote Encourages Positivity and Collaboration
Speaking in the opening keynote at Black Hat USA, Dino Dai Zovi, researcher and head of security for the cash app at Square, talked about security teams acknowledging developers and vice versa.
After the previously announced keynote speaker Will Hurd was withdrawn among criticism among the security community over his voting record, Zovi took the opportunity to focus on the “shift left” concept and how he had worked his way through events like Pwn2Own and security jobs where he had seen differing security cultures.
He said that starting his job at Square in 2014, he was able to overcome some of the collaboration problems he had seen in other jobs, and especially where there was a culture of collaboration and empathy, “as security engineers wrote code like everyone else.”
“A software team member said 'hello, security friends' and asked a question, and someone voluntarily talked to security. It took me a while to figure out what the ingredients were, and that was the transformative change for me.”
He said that when he saw this firsthand, he was critical and went to demonstrating his capabilities because “we are not insiders anymore” and we need to opportunities to demonstrate what we have learned.
To be better at security, he recommended looking at three transformative lessons:
Seek and apply leverage
Culture>strategy>tactics
The first lesson is “what customers hire ..
Support the originator by clicking the read the rest link below.
