(Ab)user Experience: The dark side of Product and Security

Security can often feel like an unapproachable and mysterious part of an organisation – the department of work prevention, the department of “nope.” But it doesn’t have to be that way.

In this talk we will look at the unintended users of a product, the “threat agents”.

By engaging the Security team in the Product process, we can model the dark side of use cases and user stories through threat modelling techniques. This can help demystify impenetrable security NFRs through concrete examples of how these threat agents may try to misuse your shiny new digital product.

Who this event will benefit
Those building products/apps exposed to the web
People who are wanting to build out an awareness of the possible attack vector use cases (i.e. how might you be attacked)
People who need to write that down as a set of requirements to help build a DevSecOps approach in projects


Session info:

Jeff Watkins

Speaker: Jeff Watkins

Chief Product and Technology Officer at Compromising Positions

Date: 15 maart 2024

Time: 09:50 - 10:35

Relevant tags:

Lianne Potter

Speaker: Lianne Potter

Cyber Anthropologist, Head of Security Operations and technology podcast host @ Compromising Positions at Compromising Positions

See all speakers

See all videos