How to Run a Security Program
The views and content presented in this video are solely those of the speaker and do not reflect the opinions or positions of WSO2.
In the ever-changing landscape of software security, achieving a "0 vulnerability" environment is a lofty goal. This session guides on building a comprehensive security framework that emphasizes early detection, continuous monitoring, and community engagement. The talk explores automating security practices and integrating checks early in the development process to minimize vulnerabilities. It also emphasizes the importance of fostering a positive relationship with the security research community, recognizing and rewarding contributors to prevent potential data breaches. Attendees will gain practical insights on managing a security program that not only mitigates risks but also promotes a collaborative approach to software security.
Speaker
Ayoma Wijethunga
Director - Security and Compliance,
WSO2
Ayoma Wijethunga, the director for security and compliance at WSO2, heads the company's cybersecurity strategies and regulatory compliance efforts. He possesses a portfolio of certifications including Offensive Security Certified Professional (OSCP), Offensive Security Web Expert (OSWE), Certified Kubernetes Security Specialist (CKS), and Certificate of Cloud Security Knowledge (CCSK). His expertise spans across ensuring the security of WSO2's products and infrastructure, upkeep of comprehensive security programs, and aligning with global security standards. Beyond his role at WSO2, Ayoma contributes to the cybersecurity community through speaking engagements and open source projects, underscoring his commitment to advancing security awareness and practices.