BoFs, SIGs, & Scheduled Side Meetings

The FIRSTCON 2024 Africa Meet Event will happen on Thursday, June 13th, 2024, from 9:00 AM and 10:00 AM at the Olive.

Breakfast will be available in the room in addition to the continental breakfast on the 1st floor.

We are looking forward to meeting each of you in Japan and engaging in enriching discussions and exchanges.

Dr. Pedram Hayati is the Founder and CEO of SecDim, where he focuses on redefining developer engagement in security through developer-oriented wargames. As a security researcher proficient in OffSec and AppSec, he has reported thousands of vulnerabilities to Fortune 500 companies, published over 25 zero-days, and has led a global penetration testing team. Pedram lectures at the University of New South Wales, Australian Defence Force Academy. He is the founder of SecTalks.org, the largest non-profit security community in Australia. He has presented at top security conferences and hosted AppSec wargames at DEF CON, BlackHat, HITB and FirstCon.

Security teams often find themselves racing against the clock, struggling to keep pace with the rapid evolution of software development. Meanwhile, developers, the very architects of these systems, often find themselves disengaged from the security process, merely checking off boxes to get the green light. This misalignment poses a significant challenge in an era where cyber threats loom large and vulnerabilities lurk in every line of code.

Let's come together for a discussion where we'll explore the importance of developers actively participating in software security. We'll examine the challenges posed by mandatory developer security training and the limitations of automated security scanning tools, including the widely talked-about AI solutions. We'll uncover why these approaches often miss the mark in addressing the dynamic nature of cybersecurity threats.

Seeking volunteers interested in developing a novel global security maturity scoring system, aiding organizations in fortifying their infrastructures and providing measurable scores for their efforts. The system which will guide what to do, how to do and measure how much is done.

One measuring system that’s action oriented and easy to understand

• CxO Friendly
• SecOps Friendly
• Action Oriented

This BoF will be an interactive session lead by the FIRST Secretariat and the Membership Committee to assist teams applying to FIRST.  Please attend if:

• You would like to learn more about membership/benefits of FIRST
• Would like an overview of the FIRST application process and requirements
• Are already working on your application and would like assistance
• Have questions about SIM3 and would like to understand more about FIRST parameters and scoring  
• Are an application sponsor (current member) or interested in learning more about sponsoring a team/liaison for membership

The FIRST Membership Committee would like to get input on starting a 'Student SIG'. Currently there is not a category of membership for students - and most do not have sponsors to apply as liaisons.

Would like to have a discussion regarding an entry point to FIRST for students. Is a SIG the right way to proceed and what would that charter look like (what services/support can FIRST offer to students) -- and would members support the effort?

This will be a combiner meetup of the FIRST Standards Committee and the broader standards community, similar to what we did in Montreal.

Are you interested in volunteering for the 2025 FIRST Conference Program Committee? Grab a plate of food and head up to the room Olive on the 5th floor for a lunch and learn session.

Closed meeting to Security Lounge SIG Members Only.