| Channel | Publish Date | Thumbnail & View Count | Download Video |
|---|---|---|---|
 | Publish Date not found |  0 Views |
PRESENTATION:
Cybersecurity is critical to protecting our infrastructure. With the convergence of enterprise IT and product, IT and cross-functional systems, vulnerabilities and risks increase. Current cybersecurity standards provide guidelines to limit security risks in products, projects and organizations. This webinar introduces systematic security engineering to standards such as ISO 21434. To learn for your own security testing, we will provide practical examples from global Vector projects.
Security Verification and Validation (V&V) must combine a variety of techniques, from static analysis to fuzzing and PenTest. While brute force testing may sound attractive and easy to apply for finding weaknesses anywhere, it is expensive, inefficient, and time-consuming. Grey-box security testing starts with a mini TARA and from this we identify the attack vectors and target our testing based on identified assets and risks. Such new security tests can detect vulnerabilities more efficiently, effectively and with predictable results in a shorter time frame. The cybersecurity tests described offer several advantages, namely:
Risk-based testing with a tailor-made and therefore efficient gray-box methodology
Easy to understand, asset-related results with a clear structure
Prioritized list of findings based on the impact categories
In this practical presentation in the industry we show the practical use. An industry case study will provide a hands-on illustration of how security V&V can be aligned with new and existing architectures.
ABOUT THE PRESENTER:
Christof Ebert is the Managing Director of Vector Consulting Services. As a member of industrial boards and professor at the University of Stuttgart and the Sorbonne in Paris, he supports clients around the world in the areas of strategy, product development and agile transformation. Previously, he held senior management positions at a global IT market leader for twelve years. He encountered the first attacks while studying in the US and has been contributing to cybersecurity ever since, most recently with the evolving Pentest.
Follow Christof on LinkedIn and Twitter: @ChristofEbert.
Contact him via mailto:[email protected]
Presenter slides: https://www.asrg.io/event/security-testing/
Please take the opportunity to connect and share this video with your friends and family if you find it helpful.
