Ramon Gallart
Lead AppSec Engineer at DocuSign
San Francisco, California, United States
Actions
After 20+ years building software, I now look for ways to break it in order to keep it secure at DocuSign.
https://www.linkedin.com/in/ramagaes/
Area of Expertise
Topics
Managing DocuSign’s BugBounty Program
A bug bounty program for a company should be like a sandwich for Russ Duritz: “There’s safety in sandwiches”. Having a bug bounty program will allow your company to know more about the threats that might have been exposed publicly without you knowing it. Because these threats will be safely reported, the company will have time to solve them and, at the same time, you give appreciation to security researchers by either allowing them to disclose the vulnerability, reward them with cash or both.
In this talk I’m going to show you how DocuSign set up its bug bounty program with Bugcrowd, what sets DocuSign's program apart from others, what are different ways to structure a bug bounty program and some hints and tips learned from the trenches.
Bsides Seattle 2023 Sessionize Event
Django Con
Setting up your development environment for Django. First steps and best practices for getting a reproducible environment for Django development!
Using Vagrant and Chef-solo to set up a Django development environment.
This will include:
- Use Vagrant to create a re-usable virtual machine in which to run your application
- Chef-solo to define the software running on the virtual machine and setting up the app.
- Using pip and virtualenv to install Python and libraries in an isolated way.
- All of this in a shareable Git repository, ready to use with other team members.
No more lame "it works for me" excuses.
https://pyvideo.org/djangocon-us-2014/setting-up-your-development-environment-for-django.html
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top