Dinis Cruz

CISO , PhotoBox Group

Dinis Cruz

Dinis Cruz is a CISO, Developer and Application Security Engineer focused on how to develop secure applications.

A key drive is on ‘Automating Application Security Knowledge and Workflows’ which also happens to be the main concept behind the OWASP O2 Platform.

After many years (and multiple roles) Dinis is still very active at OWASP, currently leading the O2 Platform project and helping out other projects and initiatives.

After failing to scale his own security knowledge, learned Git, created security vulnerabilities in code published to production servers, delivered training to developers, and building multiple CI (Continuous Integration) environments; Dinis had the epiphany that the key to application security is “Secure Continuous Delivery: Developer’s Immediate Connection to What They’re Creating”. This ‘Immediate Connection/Feedback’ concept is deep rooted in the development of the O2 Platform, and is something that will keep Dinis busy for many years.

For more details see blog

Scheduled Working Sessions for Dinis Cruz

(when)

Monday

Tuesday

Wednesday

Thursday

Friday

AM-1
10:30 - 12:30
Participant Debrief
participating
Montague
CISO Round Table
panelist
Montague
Too many sessions
Identity and Access Management for REST APIs - REST Security Cheat Sheet
participating
Dynamic Sessions (Main Room)
Juice Shop Live-Release
invited
Pedley
SAMM - Maturity Models tool
organizing
Dynamic Sessions (Main Room)
PM-1
13:30 - 15:00
GDPR and DPO AppSec implications
participating
Pedley
Responsible Disclosure
invited
Maulden
No session
No session
PM-2
15:30 - 16-30
Security Playbooks Diagrams
participating
Maulden
Too many sessions
Creating AppSec Teams
organizing
Montague
Responsible Disclosure
invited
Maulden
Securing the CI Pipeline
invited
Kings
Too many sessions
Securing GitHub Integrations
participating
Portland
Writing Security Tests
organizing
Kings
No session
No session
PM-3
16:30 - 17:30
Too many sessions
Too many sessions
Cyber Insurance
participating
Montague
JIRA Risk Workflow
organizing
Kings
Staff Technical Writer's Session
participating
Threat Modeling Cheat Sheet & Lightweight Threat Modeling (Part II)
participating
Threat Model Villa (OK312)
Eve
Too many sessions
Hackathon Daily Sessions
participating
DevSecCon Villa (OK314)
Juice Shop Coding Night
invited
Juice Shop Villa (OK313)
Too many sessions
Hackathon Daily Sessions
participating
DevSecCon Villa (OK314)
Juice Shop Coding Night
invited
Juice Shop Villa (OK313)
Security Book Club
participating
Mobile Project Villa (OK310)
Too many sessions
Hackathon Daily Sessions
participating
DevSecCon Villa (OK314)
Hands on Threat Modeling Juice Shop (Attacking 2)
participating
Threat Model Villa (OK312)
Juice Shop Coding Night
invited
Juice Shop Villa (OK313)
Too many sessions
Closing party
organizing
DevSecCon Villa (OK314)
Hackathon Daily Sessions
participating
DevSecCon Villa (OK314)
Juice Shop Coding Night
invited
Juice Shop Villa (OK313)
No session

contact details


(for Working Sessions organisers)

To invite Dinis Cruz to your Working Session use invited: Dinis Cruz


Back to list of all Participants

Edit this page here