Web Security - How to Protect Your Site Online

As hacking evolves, creating and maintaining a secure site becomes more challenging. In this session, we will use hands-on demos show you how hackers exploit vulnerabilities on a website. We’ll explore how to holistically approach web security as you build and maintain your website including what HTTPS does and doesn’t do on your site. Finally, we’ll explore some ways you can protect your site now and in the future.

Three Key Takeaways

  1. Treat web security as important as SEO when building your website
  2. Enabling HTTPS is not the same as website security, but it’s important for protecting your users
  3. Protecting your website takes work, but there a few simple steps you can start with
Conference event time: 
4:15 to 5:30 p.m. (Sessions)
Wednesday, September 12, 2018
Sterlings 1/2/3

Agile Security Compliance With Infrastructure as Code in the Cloud

Perhaps nothing is more frustrating to us as web professionals than developing than an awesome application that provides immediate benefits to our audiences and then waiting a year or more to make it available in production as we write documentation and work with the auditors on review and testing to ensure it is secure and obtain certification at enormous, additional and unbudgeted cost. What if we could simplify and accelerate compliance by automatically producing the documentation and verifying security as we develop the application with minimal additional effort or funds? This is possible through the concept of “infrastructure as code” especially when combined with the flexibility of cloud computing. This session will examine the idea of infrastructure as code and its practical application using applications built on Drupal and WordPress and tools together with infrastructure as code tools including Docker, Kubernetes, and Terraform and cloud computing systems including AWS and Azure.

Three Key Takeaways 

  1. Infrastructure as code is a transformational idea, simplifying the process of compliance while also enhancing security
  2. Infrastructure as code can be implemented incrementally, with immediate benefits for security and cost
  3. Infrastructure as code is naturally compatible with cloud computing, although it is not dependent on the cloud  
Conference event time: 
1 to 5 p.m. (Afternoon sessions)
Tuesday, September 11, 2018
Birmingham (Bridges)

Conference Registration

Late registration rates in effect now through the start of the conference.

Register Now >>

Title, Award, Reception & Showcase Sponsors


Hotel Location

Wyndham Grand Pittsburgh Downtown
600 Commonwealth Place
Pittsburgh, PA 15222
(412) 391-4600

Hotel Website >>

Conference Summary

2017 Executive Summary
View the Executive Summary with of all the benefits of attending.

About NAGW

We are NAGW - The only conference designed for government web professionals by government web professionals.

Stay Connected on:

Contact NAGW

For general information about nagw/conference, including registration, please contact us at:
National Association of Government Web Professionals

  • memberservices@nagw.org
  • 847.647.7226
  • 8120 Lehigh Avenue, Suite 100
    Morton Grove, IL 60053