CGI’s Adam Pickering joined Chapter Lead for OWASP Newcastle, at their first Chapter event of 2021 on Wednesday, 23 February 2021.
The webinar focused on two main topic areas:
- Detecting complex code patterns
Colleen Dai, Security software engineer at r2c, talked about ‘Semgrep’ - a free open-source program analysis toolkit that finds bugs using custom analysis and OSS code checks. Semgrep is ideal for security researchers, product security engineers, and developers who want to find complex code patterns without extensive knowledge of ASTs or advanced program analysis concepts.
- The risk of breeding laziness in Cyber Security Management
Adam Pickering, Senior Consultant and Certified Cyber Professional at CGI, delivered a thought-provoking presentation entitled ‘Wham, bam, thank you scam!’ looking at how the GDPR fines system risks breeding laziness in Cyber Security Management. His particular focus was on the impact that GDPR fines had on the anticipated Annual Loss Expectancy in relation to a Cyber Breach, resulting in the loss of PI.
The presentation also looked at how the GDPR fines system impacted business behaviour and risk appetite, what the net result was in relation to Cyber Security Budgets between 2018-2020, as well as the result of the reduction in total fine amounts and the impact of the reduction on Cyber Security Credibly.