Back To Schedule
Thursday, May 11 • 2:05pm - 2:35pm
Golfing with Dragons: Building Secure Environments for CTF Competitions

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Capture-the-flag events remain one of the most popular ways to learn new skills in the information security field, but how do you securely deploy and monitor a competition that is designed to be hacked?

This talk will demonstrate how running CTF events are an exercise in applied DevSecOps practices. From threat modeling the attack surface to building hardened containers and monitoring resource utilization, we will cover how to approach running competitions that are meant to be hacked while maintaining the security of your core infrastructure and ensuring competitors enjoy the competition.

avatar for Jared Stroud

Jared Stroud

Lead Security Engineer, The MITRE Corporation
Jared Stroud is a lead security engineer at the MITRE Corporation, focusing on tackling DevOps problems related to containers and Kubernetes. Additionally, Jared serves as an adjunct lecturer at the Rochester Institute of Technology, teaching courses related to computing security... Read More →
avatar for Daniel Szafran

Daniel Szafran

Cybersecurity Engineer, The MITRE Corporation
Daniel Szafran is a Cybersecurity Engineer for the MITRE corporation. He has a master's degree in computing security from the Rochester Institute of Technology and specializes in automated deployment.

Thursday May 11, 2023 2:05pm - 2:35pm EDT
Virtual Virtual

Attendees (2)