Building Better Risk Detection From Your Data
Presentation Technical Level
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic
Your application is generating lots of potentially useful data, and plenty of it isn't looked at or used effectively. Learn how to capture and analyze this data to detect risks to your organization and users in a cost effective manner. Many of the techniques presented use your existing data without requiring any changes to your application architecture. This presentation will provide examples of detecting and visualizing real-world attacks including account takeovers, being probed for web application vulnerabilities, and others.
Submitters
Nick Galbreath, Etsy
Presenters
Zane Lackey, Etsy, Inc.
Title
Engineering Manager, Security
Presenter Biography
Zane Lackey leads the application security group at Etsy, the world’s handmade marketplace. His research has been featured in notable media outlets such as the BBC, Associated Press, Forbes, Wired, CNET, SC Magazine and in 2010 he was named as one of 12 prominent security researchers by Network World magazine. He is a contributing author of Mobile Application Security (McGraw-Hill), a co-author of Hacking Exposed: Web 2.0 (McGraw-Hill), and a contributing author/technical editor of Hacking VoIP (No Starch Press). He holds a Bachelor of Arts in Economics with a minor in Computer Science from the University of California, Davis.