Vidmaster
I'm starting a new role as the first hire on a new application security team soon, which is awesome and terrifying! For those who have been in a similar role, what's the one thing you wish you had/hadn't done when starting out in such a position?
#AppSec #cybersecurity
Jan 5, 2023 at 4:09amWeb
Show threadBillJan 5, 2023
@Vidmaster Get a list of every single application, if it is in house, and where the code is if so. Then have a vulnerability assessment completed.
Show threadAnant Shrivastava aka anantshriJan 5, 2023
@Vidmaster one may sound harsh but keep opinions to yourself for first 3 months no matter how bad things look. ask questions but show genuine understanding of the pain and concerns if shown. support dev team with small gestures. become a friend with them. your role will put them in opposite seats a lot, friendly faces on both sides help.
Show threadVidmasterJan 7, 2023
@anant Great advice! I try hard not to be That Security Guy, but sometimes it just happens. I'm hoping that my dev background buys me some extra credit with the teams I'll be supporting!
Show threadTh3List3n3rJan 7, 2023
@Vidmaster Maybe this presentation can help you "The Long Hard Road of AppSec" https://slides.com/simpson/the-long-hard-road-of-appsec
The Long Hard Road of AppSec

A presentation created with Slides.

Slides
Show threadVidmasterJan 7, 2023
@Th3List3n3r This looks awesome, thank you!