OCTOBER 16, 2019

@Scale 2019: The call is coming from inside the house: Lessons in securing internal apps

Hongyi Hu
Dropbox

TOPIC:  Fighting Abuse and Security

@SCALE SERIES:  Security @Scale

TYPE: video

YEAR: 2019

TAGS: 

Locking down internal apps presents unique and frustrating challenges for appsec teams. Your organization may have dozens if not hundreds of sensitive internal tools, dashboards, and control panels, running on heterogenous technical stacks with varying levels of code quality, technical debt, external dependencies, and maintenance commitments. Hongyi discusses experiences in managing internal appsec, conveying the technical and management lessons Dropbox has learned in the process. He captures what worked well — finding a useful mental model to organize a road map and rolling out content security policy — and what didn’t.

SUBSCRIBE TO @SCALE

TOPICS
ANDROID, VIDEO, AND WEB Data, Systems and Networking Dev Tools and Ops, Privacy, Sustainability and Performance Fighting Abuse and Security Machine Learning and AI
RECENT POSTS
Call for Winter Systems@Scale Presentations Blog for Owl: The Distribution Challenge Software and Hardware Remediations at Meta

FINDING SOLUTIONS

We welcome your comments and questions about @Scale. Please contact us through our Facebook page!

TERMS OF USE PRIVACY POLICY COMMUNITY STANDARDS

2023 @SCALE. ALL RIGHTS RESERVED

JOIN THE @SCALE MAILING LIST AND GET THE LATEST NEWS & EVENT INFO

To help personalize content, tailor and measure ads, and provide a safer experience, we use cookies. By clicking or navigating the site, you agree to allow our collection of information on and off Facebook through cookies. Learn more, including about available controls: Cookies Policy