OWASP Serverless Top 10

This conference talk explores the critical importance of the OWASP Serverless Top Ten for securing modern cloud applications. Learn about the unique security challenges introduced by serverless computing, including misconfigured permissions, insecure third-party integrations, and event injection vulnerabilities. Discover how this comprehensive framework helps bridge the knowledge gap created by rapid serverless adoption without adequate security awareness. Gain practical guidance for both developers and security teams on identifying and mitigating the most critical vulnerabilities in serverless applications. Understand why this resource has become an industry-standard reference for best practices in serverless security. Explore how the Top Ten addresses security concerns in increasingly complex cloud-native ecosystems and helps future-proof applications as serverless computing evolves alongside AI, IoT, and edge computing technologies. Presented by David Melamed and Aruneesh Salhotra, this 28-minute talk provides essential knowledge for anyone working with serverless architectures.