Viraj Gandhi
Sr. Staff Product Security Engineer at SailPoint 12 plus years’ experience in Agile/Scrum software development
• In-depth knowledge of common web application vulnerabilities (OWASP Top Ten)
• Designing processes for security reviews, threat modeling, and partnering with product engineering teams
• Experience working across teams to help drive security improvements across the enterprise by providing security advise and risk assessment.
She am a strong advocate for equity at Workplace and currently volunteering with WiCyS, a community promoting advancement of women in the cybersecurity workforce.
Follow Viraj
All Sessions by Viraj Gandhi
Day Oct 08, 2021
Security Collaboration, Nurturing right partnerships
Bridging the gap between security and engineering teams The COVID-19 pandemic has presented a wide range of vulnerabilities for bad actors to take advantage of digital transformation, but Security culture has not kept pace with the threat landscape, every organization knows security is very crucial and must be embedded into everything. Investing in Security culture is MUST for every organization to maintain/heightened line of defense. Built in Security Dilemma The challenges between development and security teams are really around skills, regulations, and cultural issues. Project managers justify technical debt for poor security practices for Go to market commitment, QA struggles to find security vulnerabilities; customers don't know what to ask for around security; Dev’s find current security best practices to be insufficient and road blocking.