Presentation: Reducing Risk of Credential Compromise @Netflix

Track: Security: Lessons Attacking & Defending

Location: Pacific DEKJ

Duration: 4:10pm - 5:00pm

Day of week:

Slides: Download Slides

Level: Intermediate

Persona: Security Professional

More talks on:

This presentation is now available to view on InfoQ.com

Watch video with transcript

Abstract

Building a secure system is like constructing a good pizza – each individual layer adds flavor that ultimately builds to the perfect bite. At Netflix we have hand-crafted ingredients that by themself are scrumptious, but when placed together strategically on the crust (read: cloud), constructs a pizza so large that any pizza lover (read: attacker) would be challenged to finish.  Attendees will learn the secret to the sauce that is Netflix Infrastructure Security, be equipped to start baking pizza in their own kitchen, and leave satisfied.

Speaker: William Bengtson

Security Researcher, Leader, Advisor @Netflix

Will Bengtson is senior security engineer at Netflix focused on security operations and tooling. Prior to Netflix, Bengtson led security at a healthcare data analytics startup, consulted across various industries in the private sector, and spent many years in the Department of Defense. Bengtson is on the BSidesSF and Bay Area OWASP leadership team. Bengtson contributes to numerous open source projects and has spoken on topics of security across the world.

Find William Bengtson at

Speaker page

https://www.linkedin.com/in/william-bengtson-26837953/

Speaker: Travis McPeak

Sr. Cloud Security Engineer @Netflix

Travis is a Senior Cloud Security Engineer at Netflix. He enjoys applying automation to solving complex problems that can’t be addressed manually. Travis is currently the OWASP Bay Area chapter lead and a core developer of several open-source security tools including Bandit and Repokid. In the past he has led several initiatives on the OpenStack Security Team and was a founding member of the Cloud Foundry Security Team. When not geeking out on security he enjoys traveling and quality beer and food.

Find Travis McPeak at

Speaker page

https://www.linkedin.com/in/travismcpeak/

Similar Talks

License Compliance for Your Container Supply Chain

Qcon

Open Source Engineer @VMware

Nisha Kumar

Exploiting Common iOS Apps’ Vulnerabilities

Qcon

Software Engineer @Google

Ivan Rodriguez

Securing Software From the Supply Side

Qcon

Senior Engineering Manager @GitHub

Nickolas Means

Scaling Patterns for Netflix's Edge

Qcon

Playback Edge Engineering @Netflix

Justin Ryan

Security Culture: Why You Need One and How to Create It

Qcon

Co-Founder @hello_Elevate

Masha Sedova

Reflecting on a Life Watching Movies and a Career in Security

Qcon

VP Information Security @Netflix

Jason Chan

Small Is Beautiful: How to Improve Security by Maintaining Less Code

Qcon

Security Researcher @Google

Natalie Silvanovich