Security

Insights, tools, and best practices to keep your organization and users secure.

Read the introduction

Ideas

Security

This is how we do it: Behind the curtain of the O’Reilly Security Conference CFP

By Courtney NashAllison Miller

Insider information on the O'Reilly Security Conference proposal process, including acceptance and rejection stats.

Security

Automotive security and cybersecurity science

By Josiah Dykstra

Applying security insights gained from scientific evaluation.

Security

Securing your multi-tenant CI/CD platform

By Courtney AllenBinu Ramakrishnan

5 questions for Binu Ramakrishnan: Insights on the threats of centralized multi-tenant CI/CD environments, common protection methods, and tips for improved security.

Security

Meeting the ransomware challenge

By Courtney AllenAllan LiskaTimothy Gallo

5 Questions for Timothy Gallo and Allan Liska: Insights on common ransomware delivery methods and how to find balance between minimizing attack risks and maximizing productivity.

Security

A DevOps approach to PCI compliance

By Courtney NashJohn BullardBenji Taylor

Five questions for John Bullard and Benji Taylor: Insights on the challenges faced and the tools used to achieve PCI compliance.

O'Reilly Security Podcast

Dan Kaminsky on creating an NIH for the security industry

By Courtney Nash

The O’Reilly Security Podcast: Coarse-grained security, embracing the ephemeral, and empathy for everyone.

Learning

Runnable code

Security

Incident management at the edge

By Maarten Van HorenbeeckLisa PhillipsTom Daly

Lessons learned at Fastly: How to build a robust system that identifies, mitigates, contains, and properly communicates incidents to prevent recurrence.

Runnable code

Security

Cracking security misconceptions

By Andrew Peterson

Untangling common myths about modern information security.

Video

Security

HTTPS is coming. Are you prepared?

By Zack Tollman

Zack Tollman explores the key aspects of HTTPS to help developers to take control of their HTTPS-only sites.

Video

Security

Security and performance: Breaking the conundrum ... again!

By Sonia BurneySabrina Burney

Learn how security can be enforced at the browser level through a combination of optimization techniques and security enhancements.

Runnable code

Security

Hardening a Unix application server

By Lee BrotherstonAmanda Berlin

Principles of defensive configuration security.

Video

Security

DevOps, security, and compliance: Working in unison

By Elizabeth Lawler

How to bring DevOps, security, and compliance teams together to forge a secure infrastructure for your company.

Shop

Learning Path

Preparation for CISSP Certification, Domains 1–4

This learning path prepares you for CISSP (Certified Information Systems Security Professional) certification, considered by many to be the must-have certification for information security practitioners.

Shop now

Learning Path

Preparation for CISSP Certification, Domains 5–8

With this Learning Path you'll prepare for a crucial requirement of your certification—the CISSP exam. CISSP (Certified Information Systems Security Professional) certification is considered by many to be the must-have certification for information security practitioners. You'll work through the last 4 of 8 Domains included on the exam.

Shop now

BOOK

Network Security Assessment

By Chris McNab

Shop now

VIDEO

Encryption

By Brian Sletten

Shop now

Video

Introduction to Secure Software

Shop now

VIDEO

Learning Linux Security

By Ric Messier

Shop now

BOOK

Essential Cybersecurity Science

By Josiah Dykstra

Shop now

BOOK

Crafting the InfoSec Playbook

By Brandon EnrightJeff BollingerMatthew Valites

Shop now

BOOK

Network Security Through Data Analysis

By Michael Collins

Shop now

Events

O'Reilly Security Conference

2016 events
Oct. 31-Nov. 2, New York
Nov. 9-11, Amsterdam

The O'Reilly Security Conference provides pragmatic advice on defensive security practices, arming today's infosec practitioners with real-world tools and techniques.

Learn More

Related Sessions

Charlie Chaplin in the 1915 film "His New Job"

Keynote

Securing organizations through bad behavior

By Laura Bell

Session

Why we can't have nice things: A tale of woe and hope for the future

By Pete Cheslock

Session

Durability theater or real world safety? How to engineer against data loss

By James Cowling

Session

Security and performance: Breaking the conundrum

By Sonia BurneySabrina Burney

People

Allison Miller

Allison Miller works in product management at Google, mitigating risks to Google and end-users. Prior to her current role, Allison held technical and leadership roles in security, risk analytics, and payments/commerce at Electronic Arts, Tagged.com, PayPal/eBay, and Visa International. Miller is a p...

Zane Lackey

Zane Lackey is the Co-Founder/CSO at Signal Sciences and serves on the Advisory Boards of the Internet Bug Bounty Program and the US State Department-backed Open Technology Fund. Prior to Signal Scien...

Guy Podjarny

Guy Podjarny is a cofounder at Snyk.io focusing on the security risk in your dependencies. Guy was previously CTO at Akamai and founder of Blaze.io. Guy is a frequent conference speaker, the author of...

Topic image: Conway Castle, North Wales, by Joseph Mallord William Turner (British, 1775 - 1851) (source: Getty Museum).