Loading…
or to bookmark your favorites and sync them to your phone or calendar.
arrow_back View All Dates
Friday, November 15
 

2:00pm IST

Zero Day Apocalypse: The Rising Cyber Threat Landscape
Friday November 15, 2024 2:00pm - 2:45pm IST
Imagine a hidden flaw in the application software that hackers can exploit before anyone even knows it exists. These are called zero-day vulnerabilities, and they're becoming a bigger problem. Hackers are finding these flaws faster than ever before, and when they use them to attack, the damage can be huge.
Think about the times you've heard about big companies getting hacked. Many of these attacks use zero-day vulnerabilities. Hackers can steal personal information, disrupt businesses, and even cause financial losses. It's like a ticking time bomb in your application.
To protect ourselves from these dangers, we need to be smarter about how we use and maintain our application software. This means regularly checking for updates, writing code carefully, and having a plan in place to deal with attacks when they happen.
In short, the threat of zero-day vulnerabilities is real and growing. By being proactive and taking the right steps, we can reduce our risk and keep our digital world safe.
                                   

Speakers
avatar for Somen Das

Somen Das

Technology Head, Attack Surface Management, TCS
Technology Head, Attack Surface Management @ TCS
Friday November 15, 2024 2:00pm - 2:45pm IST

2:45pm IST

Leveraging DevSecOps and AI to Triage and Resolve OWASP Top 10 Vulnerabilities in a project(s)
Friday November 15, 2024 2:45pm - 3:15pm IST
 In this session, we'll explore how to effectively triage and resolve vulnerabilities within the OWASP Top 10 categories using a DevSecOps platform like GitLab.
Attendees will learn:
1. How to configure security scanners within project pipelines to generate comprehensive vulnerability reports.
2. We'll then dive into using the data from these reports to triage vulnerabilities according to the OWASP Top 10 categories.
3. Finally, we’ll demonstrate how AI-assisted tools can suggest resolutions and automate the remediation of these identified critical vulnerabilities.
                                   
    
Speakers
avatar for Bala Kumar Subramani

Bala Kumar Subramani

Senior Backend Engineer, Gitlab
Friday November 15, 2024 2:45pm - 3:15pm IST

3:30pm IST

Building Secure AI Systems: A Comprehensive Approach to AI Security
Friday November 15, 2024 3:30pm - 4:15pm IST
 AI security is emerging and it necessary for organization and AI practitioners to incorporate secure way of developing and adopting AI systems. This means at each stage of SDLC there needs to controls and best practices to be followed specific to AI apart from traditional application security practices (Secure SDLC).
SDLC Stage vs AI Security Controls:
Design - Risk Assessments / Threat Modelling AI systems Development - Asset Inventory / tracking , protect sensitive data and supply chain security
Deployment - Secure MLOps, Incident Management, AI Security assessments, Secure Infrastructure
Operate and Maintain - Secure Logging and Monitoring, Patch management.
References and Resources will be shared.
By the end of this talk, the audience will have a clear understanding of how to approach AI security and will be equipped to develop guidelines that ensure the security of AI systems throughout their lifecycle.
                                   
    
Speakers
avatar for Gowtham Sundar

Gowtham Sundar

Head - AppSec, SPH Media
Friday November 15, 2024 3:30pm - 4:15pm IST