Awesome work! Learned a lot.

Boa tarde!

Molto interessante. Bravi!👏

Parabéns! Adorei a proposta e conteúdo!

I listened on Audibles and it was excellent! Who is "They" and how does the "World End"? I get that we need to prevent vulnerability like Sweden & Japan have. Have we already lost our country to a Hacker War? Will awareness reverse the damage and gather more on board to protect information even after we created this mess?

Muito bom esse conteúdo. Estudei com o Rafael e muito legal ver hoje compartilhando experiências muito relevantes. Parabéns

Please help me to understand the following. If the IP is whitelisted and SSL are in use. What is the use of using the Signing Algorithm? As the requests will be always from the verified provider. Other can't make a request due to IP whitelist in place.

Ye nagarjun bahi

Thank you for your video

Thanks Liz Rice for the great informative session!

Thanks! I suggest you make a comparison of OWASP ZAP and Nuclei.

I always had this feeling that something was missing in my life... and here we are with the answer, thank you Chris for an amazing presentation on policy as code

Lll

Thank you for addressing the number one mistake in DAST.

What's the source(s) for the numbers displayed at 4:43 about AI usage in development?

Such an Informative video about the Mobile APP Sec. However I'm not an Italian but I used the caption to listen you guys 😅. Kudos to you guys 🎉 for putting an effort to show the demo. Thanks alot

Começa no 3:10

😘 'promo sm'

Thank you! Personally, I didn't get bored when listening theory part :)

Amazing. Thank you for insights Karan 😀

Well said both of you guys . Keep it up 👍🏻

Loving the graphics!!

Cleitin exemplo de mais

Conteúdo sensacional. Parabéns

Good thanks

as a Security Architect I find the concept of IaaC very interesting, but writing the Security Requirements a bit challenging with not a lot of information in this area, at least in large Enterprise systems. Some risks are relatively obvious but it can get deep very fast. From a shift in Security, more specifically on who is in control of the Information this I truly believe is the future.

1:35

Great talk, thanks!

Isnt it a frowned upon to include PII in audit logs? Asking cause your example includes IP address. Sorry, I dont have a technical background, just curious

Very interesting, thanks for sharing!

OMG😍,Awww💞 I love this!!! You are late to the party - "promo sm"!!

Fica como sugestão de tópicos pras próximas calls, um vídeo por cada assunto desse. talvez com exemplos mais diretos pra amadurecer o nosso nível de devsecops em etapas

Hello. Good video. In your opinion, where is the best place to save the audit logs. Do you think save these kind of logs in relational databases is a bad ideia? Because in the long term, it worsens the performance of searching the logs in addition to consuming a large amount of data inside database. Which tool do you think is better tho?

Thanks

Cool content, thanks!

Useful

very practical insights. 👍

Excellent presentation. Todah rabah Hila!

Yes do you have any free materials for DevSecOps

Great !!!!

Great talk! Thank you

interesting talk, thank you

thank you, very informative

Great presentation

Great talk, thanks for sharing!

Awesome

Thank you for bringing these insightful talks to us! Thank you Eric and Brian for being such cool hosts! Loved the keynote by Neelu Tripathy!

Scorecard! wow!

Thank you for the upload. I've been looking at this book but I'm terrible at sitting down and reading or even using an audio book. this motivated me to pick up the book and actually get reading.

This is a great concept that moves the discussion past low/medium/high. A useful example here is with the EU’s MDR which requires risk to be reduced as low as possible. The credit rubric would provide clear prioritization and quantify residual risk to be eliminated or justified.