InfoQ Homepage Risk Management Content on InfoQ
-
Risk and Failure on the Path to Staff Engineer
Caleb Hyde discusses their career progression and regressions, as well the context they used to figure out what to work on and whom to work with, distilling a framework to utilize in one’s own work.
/presentations/risk-failure-staff/en/mediumimage/CalebHyde-medium-1719490511687.jpg)
-
Defensible Moats: Unlocking Enterprise Value with Large Language Models
Nischal HP discusses risk mitigation, environmental, social, and governance (ESG) framework implementation to achieve sustainability goals, strategic procurement, spend analytics, data compliance.
/presentations/risk-mitigation-llm/en/mediumimage/NischalHP-medium-1718109596117.jpg)
-
Sustainable Security Requirements with the ASVS
Josh Grossman provides a brief overview of what the ASVS is, but takes a closer look at balancing trade-offs and prioritizing different security requirements.
/presentations/sustainable-security-requirements-asvs/en/mediumimage/JoshGrossman-medium-1702972626824.jpg)
-
Securing Java Applications in the Age of Log4Shell
Simon Maple looks at how one can be more proactive and defensive in decisions for future Log4Shell like scenarios, considering, identifying and reducing the risk introduced into applications.
/presentations/log4shell-security/en/mediumimage/Simon-maple-m-1665986617483.jpg)
-
Depending on Whether I Had Coffee or Not, Your Application May Be High Risk
Shannon Morrison and Scott Behrens discuss how to perform application risk analysis at scale.
/presentations/risk-analysis-scale/en/mediumimage/risk-analysis-scale-m-1644940077857.jpg)
-
Making Npm Install Safe
Kate Sills discusses how to minimize the risks of running third-party JavaScript.
/presentations/npm-install/en/mediumimage/Katbig-1587644798999.JPG)
-
Quantifying Risk
Markus De Shon talks about the Netflix risk quantification that they introduced in their highest impact areas, and are gradually expanding across the enterprise.
/presentations/risk-quantification-netflix/en/mediumimage/Markus-De-Shon-m-1579056018117.jpg)
-
Risk Profiling
Jaume Jornet talks about why eDreams ODIGEO does Risk Profiling for product teams, how to introduce Risk Profiling in the organizations, and how it helps to move the company to highest maturity levels
/presentations/risk-profiling/en/mediumimage/Jaume-Jornet-m-1544124420224.jpg)
-
Developers as a Malware Distribution Vehicle
Guy Podjarny discusses risk management with examples from role models inside and outside of tech. Podjarny explains cognitive biases and how good security constraints can actually help move faster.
/presentations/dev-malware-spread/en/mediumimage/guy-podjarny-m-1533820407531.jpeg)
-
Liquidity Modeling in Real Estate Using Survival Analysis
Xinlu Huang and David Lundgren discuss hazard and survival modeling, metrics, and data censoring, describing how Opendoor uses these models to estimate holding times for homes and mitigate risk.
/presentations/liquidity-modeling-risk/en/mediumimage/Doibig-1527731396587.JPG)
-
Building Secure Player Experiences at Riot Games
David Rook talks about the Riot Games Application Security program. He focusses on the tech and social aspects of the program and why he feels both are important when it comes to writing secure code.
/presentations/security-riot-games/en/mediumimage/Davbig.JPG)
-
Build the Right Thing - De-risk Your Products with Experiments
Andrea Darabos discusses how to lower the startup risk with Minimum Viable Experiments which help product managers and investors build with more confidence and avoid costly mistakes.
/presentations/minimum-viable-experiments/en/mediumimage/Andreabig.JPG)