Franziska is currently working as an architect for the Swiss company Puzzle ITC, where she combines her passion for IT-security, DevOps and open source software. She is highly experienced in reverse proxy platform and WAF (web application firewalls), from her extensive experience at the Swiss post and as a co-developer of the OWASP ModSecurity Core Rule Set. As part of the OWASP DevSlop team, Franziska integrated CRS into DevSlop's pixi-crs module, a Continuous Integration pipeline, to provide developers the chance to tune their WAF earlier in the SDLC. She also blogs, speaks at conferences and provides technical training. When she isn't disassembling highly optimized regexes or study technical books, she enjoys spending time with her family.
Session: The OWASP Core Rule Set - Crafting A Security Focused DevOps Program
Every application poses its own challenges when it comes to integrating modern testing and deployment strategies. We'll take a look at how we, at the OWASP Core Rule Set, apply modern DevOps methodologies and technologies to a large, highly distributed, open source project while maintaining security as our primary focus.