The use of Open Source Software in products or services can create numerous benefits; however, it simultaneously presents security challenges that are often overlooked. How do you learn of new vulnerabilities in OSS that you use? How do you effectively manage and track those issues? How do you disclose issues to your customers? This session will address these questions and many more.
Using the AWS infrastructure, affordable third party services and solid Open Source Software, this talk will focus on setting up a solid operations environment and practice that will scale with your site.