Firework,

There's a cool event coming up here on October 2, namely GuardConf 2025 (@guardconf). I will act as a moderator in the secure development block and we will talk with the tops: Andrey Karpov PVS-Studio, Svetlana Gazizova Positive Technologies, Anton Volodchenko Codescoring, Vladislav Krylov AKTIV.CONSALTING about:

1 - Who needs secure development and why, what specialists do it? We will discuss regulations, incentives for engineers, feasibility for business specifically in terms of value for the final product.

2 - What principles should be included in the product from the very beginning? We will discuss Secure-by-design, the Shift-Left paradigm, and analyze technical solutions and their prototyping.

3 - How are information security risks for vulnerabilities assessed and is their financial loss considered? Let's discuss how to build an assessment of the impact on the product, how to calculate losses (do we count payroll for elimination, investigation, rework, impact on technological processes, operational reliability, etc.)?

4 - What types of attacks are most relevant to the delivery pipeline? We will discuss practical cases against the backdrop of a market overview in different industries, as well as what typical attack patterns exist.

5 - How to build a secure development process in an organization?

6 - Software security indicators and criteria

Join us, I will be glad to see you there and we will happily discuss the interesting questions that people ask themselves about the value of information security in development teams. Register here.

Additional information from the organizers.

See you at the meetup 🙏

#conf #pmcases #humanres #backstage