Eoin & The Security

At edgescan we have built a pretty good continuous fullstack vulnerability management platform and have a list of very interesting clients across many verticals such as media, gaming, medical sciences, finance, cloud etc. We do a good job of finding, validating and risk assessing vulnerabilities across the full stack and helping our clients manage and protect their systems from a security breach and reduce Bugbounty costs... More Here: www.edgescan.com An elephant in the room: Client Security One important part of security is a difficult "nut to crack" is client side security:  We don't know  if a user is patched; using an old insecure browser; is infected or compromised  We have not way of knowing the "health of our users" whom use our web applications.  A common vector of attack is not to attack a system or service but to attack users given they are generally less secure. To that end the product development team have built "e

So here we are again, RSA 2018 in San Francisco, but to be honest its edgescans first time to attend as a vendor. The last time I was there was in 2014 teach 400 developers on secure application development with Jim manico . Funnily enough things have not changed so much, the slides are here So what will the edgescan team be doing on our first foray into RSA as a vendor ? Apart from numerous meetings with clients, partners and media we are also flying to Irish flag and attending an " Irish Night " hosted by Enterprise Ireland and the IDA. Feel Free to pop along for a pint and to meet some of the edgescan senior team. Personally I have a slight reservation regarding the event and industry as a whole.... The problems have not changed since 2014, vulnerabilities are similar/the same and the most common vulnerabilities discovered by our edgescan SaaS are still older variants. Many of the solutions being proposed are not solving the issue and not making even a dent i