New England Software Symposium
May 3 - 4, 2024
Securing the Digital Landscape: A Deep Dive into OWASP Top 10 for Applications, APIs, and LLMs
Saturday - May 4 1:00 PM EDT - ESSEX
Join us for an immersive journey into the heart of modern cybersecurity challenges. In this groundbreaking talk, we delve into the intricacies of securing your digital assets with a focus on three critical domains: applications, APIs, and Large Language Models (LLMs).
As developers and architects, you understand the paramount importance of safeguarding your systems against evolving threats. Our session offers an exclusive opportunity to explore the industry-standard OWASP Top 10 vulnerabilities tailored specifically to your domain.
Uncover the vulnerabilities lurking within your applications, APIs, and LLMs, and gain invaluable insights into mitigating risks and fortifying your defenses. Through live demonstrations and real-world examples, you'll witness firsthand the impact of security breaches and learn proactive strategies to combat them.
Whether you're a seasoned architect seeking to fortify your organization's security posture or a developer striving to build resilient systems, this talk equips you with the knowledge and tools essential for navigating the complex landscape of cybersecurity.
Agenda
OWASP Top 10 Overview
- Introduction to OWASP
- Significance of OWASP Top 10
- Overview of OWASP Top 10 for Applications, APIs, and LLMs
OWASP Top 10 for Application Security
- Presentation: Common Vulnerabilities and Mitigation Strategies
- Demonstration: Live Examples of Application Security Vulnerabilities
OWASP Top 10 for API Security
- Presentation: Key Challenges in API Security and Best Practices
- Demonstration: Illustration of API Security Vulnerabilities and Attacks
OWASP Top 10 for LLM Applications (Large Language Models)
- Presentation: Unique Security Concerns in LLM Applications
- Demonstration: Showcase of LLM Security Vulnerabilities and Risks
Q&A and Discussion
- Open Floor for Questions and Discussion
Conclusion
- Summary of Key Takeaways
- Call to Action: Implementing Security Best Practices
Rohit Bhardwaj
Director of Architecture, Expert in cloud-native solutions
About Rohit Bhardwaj
Rohit Bhardwaj is a Director of Architecture working at Salesforce. Rohit has extensive experience architecting multi-tenant cloud-native solutions in Resilient Microservices Service-Oriented architectures using AWS Stack. In addition, Rohit has a proven ability in designing solutions and executing and delivering transformational programs that reduce costs and increase efficiencies.
As a trusted advisor, leader, and collaborator, Rohit applies problem resolution, analytical, and operational skills to all initiatives and develops strategic requirements and solution analysis through all stages of the project life cycle and product readiness to execution.
Rohit excels in designing scalable cloud microservice architectures using Spring Boot and Netflix OSS technologies using AWS and Google clouds. As a Security Ninja, Rohit looks for ways to resolve application security vulnerabilities using ethical hacking and threat modeling. Rohit is excited about architecting cloud technologies using Dockers, REDIS, NGINX, RightScale, RabbitMQ, Apigee, Azul Zing, Actuate BIRT reporting, Chef, Splunk, Rest-Assured, SoapUI, Dynatrace, and EnterpriseDB. In addition, Rohit has developed lambda architecture solutions using Apache Spark, Cassandra, and Camel for real-time analytics and integration projects.
Rohit has done MBA from Babson College in Corporate Entrepreneurship, Masters in Computer Science from Boston University and Harvard University. Rohit is a regular speaker at No Fluff Just Stuff, UberConf, RichWeb, GIDS, and other international conferences.
Rohit loves to connect on http://www.productivecloudinnovation.com.
http://linkedin.com/in/rohit-bhardwaj-cloud or using Twitter at rbhardwaj1.