Events and Webinars
See where we're heading to next!

Join Snyk at Black Hat USA 2020! Now in its 23^rd year, Black Hat USA is the world's leading information security event, providing attendees with the very latest security research, development and trends. Black Hat USA 2020 will be entirely virtual this year, held over the same dates, August 1-6.

Register here to be a part of 6 days of learning, training, and conversing over all things security.

Join Snyk at this AWS virtual workshop series! Explore a range of best practices to foster innovative modern application development. Collaborate on and build modern applications to gain upskilled and broadened development capabilities at the end of the series.

Join to learn how to:

Use the right tools: Static Application Security Testing, Dynamic Application Security Testing, Runtime Application Self-Protection, and Software Composition Analysis
Automate compliance requirements into CI/CD pipelines and implement monitoring with auto remediation

DevSecOps
August 4, 2020 | 9:00 AM PDT / 12:00 PM EDT

Test Automation
August 11, 2020 | 9:00 AM PDT / 12:00 PM EDT

Coding
August 18, 2020 | 9:00 AM PDT / 12:00 PM EDT

Deployment Automation
August 25, 2020 | 9:00 AM PDT / 12:00 PM EDT

Observability
September 1, 2020 | 9:00 AM PDT / 12:00 PM EDT

Chaos Testing
September 8, 2020 | 9:00 AM PDT / 12:00 PM EDT

Leveraging open source modules is a common way for developers to deliver complex functionality quickly. However, they also represent an undeniable and massive risk. You’re introducing someone else’s code into your system, often with little or no scrutiny. The wrong package can introduce severe vulnerabilities into your application, exposing your application and your user's data.
That’s why Snyk and Trend Micro are partnering to deliver a new approach to security end-to-end application security. In this live hacking session, Andre Alves, a Trend Micro Cloud Security Architect, will team up with Snyk’s Alyssa Miller to explain the value of finding and fixing vulnerabilities at the source and protecting applications in runtime.
This talk will use a sample application, Goof, which uses various vulnerable dependencies, which we will exploit as an attacker would. For each issue, we'll explain why it happened, show its impact, and – most importantly – see how to avoid or fix it.

Register Here!

"Most of your application code is open source, and you're relying on containers for running your applications, but are you managing to keep up with security? The only way to scale in a secure way is by empowering developers to embrace security."

Tune in to learn how Snyk enables developers to find, prioritize and fix vulnerabilities and license issues in open source dependencies and containers.

Register Here!

Tracking the software and software components that an organization uses in its products and its operations is crucial for responding to emergency threats. However, building and maintaining these Software Bills of Materials (SBOMs) is very challenging, especially across large enterprises.

Join Snyk's Alyssa Miller in her discussion on the hidden threats in the Software Supply Chain and the analysis of some of the unique challenges of open source software in financial services. Alyssa will then share real world strategies and risk mitigations that organizations should employ to address these threats and reduce the risks associated with them.

Register Here to take advantage of this great learning opportunity!

Join Snyk at KubeCon Europe, Cloud Native Computing Foundation’s flagship conference, that gathers adopters and technologists from leading open source and cloud native communities virtually from August 17 – 20, 2020. Join a community of technology leaders and enthusiasts as the community gathers for four days to further the education and advancement of cloud native computing.

Join Snyk, RedHat and Portshift at our live event filled with interactive discussions and technical demos with cyber-security experts. Get involved in the conversation about the challenges teams face in their daily activities to ensure secure development, testing and deployment of containerized applications in OpenShift clusters.

The speakers and attendees together will explore a DevSecOps journey from the beginning, starting early in development with the tools needed to secure development at this stage. We’ll continue with a look at the automated pipelines of continuous integrations (CI) and deployments (CD), where images are built and turned into containers. We’ll explore how these containers are being deployed in OpenShift clusters and the security best practices required to reduce the risk potential and malicious manipulation potential.

Join Snyk’s Jay Yeras MS, Head of Cloud & Cloud Native Solution Architecture, as he speaks on building highly technical cloud architectures and enabling organizations to embrace the digital transformation.

Register Here!

Open source software is ubiquitous. While open source enables organizations to accelerate new features, applications that leverage open source and container images are a growing security concern. As noted in Snyk's State of Open Source Security report for 2020, 74% of vulnerabilities exist in indirect Java dependencies, and 9 of the top 10 most popular container images on Docker Hub had 50 or more vulnerabilities.

Traditional security tools, practices, and processes cannot simply be retrofitted to secure modern cloud-native application development. Security needs to be incorporated into the current DevOps mindset and methodology as a first-class principle.

In this workshop, attendees will learn how to do exactly that using Snyk!

We will learn how to:

• Manage and secure your open source dependencies for vulnerabilities.
• Import source code repo from Github.
• Discover its vulnerabilities and prioritization score to resolve top vulnerabilities.
• Review its dependency tree to understand which component is introducing the vulnerability.
• Review the remediation advice and how to implement it.
• Generate a pull request in GitHub, and merge our PR.
• Integrate security into an existing CI/CD pipeline and enforce your security gate policies.
• Build a container image for our application, scan it, and then build a secure image.
• Review our Kubernetes deployment files using Snyk Infrastructure as Code to enforce policy and eliminate misconfigurations

Register Here!