While strong authentication and authorization lay the foundation, achieving robust web application security demands a multi-layered approach. At first glance, the field of web application security can seem daunting, but by understanding and implementing core principles, you can dramatically strengthen your defenses against cyber threats.
In this presentation, we'll delve into the essential, yet often neglected, aspects of securing your applications. We'll cover best practices for secure coding, meticulous input validation techniques, the importance of strategic error handling and logging, how to manage file uploads safely, and much more.
What key takeaways can attendees expect from your InfoQ Dev Summit session?
Attendees can expect to learn about essential yet often neglected aspects of securing their applications. This includes best practices for secure coding, meticulous input validation techniques, the importance of strategic error handling and logging, and how to manage file uploads safely - this is mentioned in the abstract.
What's the focus of your work these days?
I am currently leading different work streams of projects for the product that I manage, including modernization efforts. A major challenge is overcoming resistance to change, and incorporating security and integration testing as a best practice.
What technical aspects of your role are most important?
A deep understanding of software development lifecycle (SDLC) practices, including application security at different levels (application and infrastructure).
How does your InfoQ Dev Summit Boston session address current challenges or trends in the industry?
By adopting a shift-left approach to security, developers can significantly improve the security posture of their applications and reduce the risk of costly security breaches. Additionally, the concepts discussed in the session can help organizations to comply with evolving security regulations and standards.
Speaker
Loiane Groner
Development Manager @Citibank
Loiane Groner is a Development Manager at Citibank and has authored books for Packt Publishing. Google Developer Expert in Angular, Microsoft MVP in Developer Technologies, Oracle ACE, Java Champion, and speaker at tech conferences. In her spare time, she loves contributing to the community, and she publishes tech videos on Youtube and creates free programming courses at https://loiane.training.
