State of Startup Application Security with Luca Carettoni

Show notes

Key Topics on Access Control Podcast: Episode 3 – An Insider's View on Startup Security from Luca Carettoni

  • Pentesting is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system.
  • It's important how you react to a security compromise rather than always trying to prevent a compromise.
  • Doyensec provides product security testing services primarily in the application security space.
  • A startup should address security internally if possible, and if not, outsource.
  • Security hires should be made depending on the company's particular security priorities.
  • The technologies you choose have a big impact on potential security risks.
  • Among the top vulnerabilities witnessed are deserialization vulnerabilities (such as Java deserialization) and Server-Side Request Forgery.

Follow Luca on Twitter https://twitter.com/lucacarettoni

New comment

Your name or nickname, will be shown publicly
At least 10 characters long
By submitting your comment you agree that the content of the field "Name or nickname" will be stored and shown publicly next to your comment. Using your real name is optional.