SlideShare a Scribd company logo

[이찬우 강사] Security plus saas security assessment_2021.04

Lee Chanwoo, profile picture
Lee Chanwoo

This document outlines the 2021 SecurityPlus SaaS Security Assessment, emphasizing the importance of incorporating security throughout the software development life cycle (SDLC). It details a framework for preparing, assessing, following up, and evaluating SaaS security, including specific requirements for data protection, access control, and continuous improvement. Additionally, it stresses the need for stakeholders' involvement and periodic evaluations to ensure security measures are effectively implemented and maintained.

Internet
Related topics:
Information SecurityCloud Computing Insights Risk-Management
1 of 25
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
2021 SecurityPlus SaaS Security Assessment (From a practical point of view) 이 찬 우
How to use cloud securely?
In short, Customer should consider security in SDLC.
4 What’s wrong with this pictures?
5 Some things don’t change over time.
Not Special.
Source Link : https://www.information-age.com/public-cloud-revenue-to-grow-6-3-in-2020-gartner-123490499/ The SaaS market is growing rapidly
Source Link : https://www.bmc.com/blogs/saas-growth-trends/ What are the biggest companies?
Source Link : https://snazlan.wordpress.com/2016/12/09/topic-0020-assessment-vs-evaluation/
10 Preparation → Assessment → F/up → Evaluation
11 “Can refer to various references for SaaS security assessment.” Preparation 2021 SecurityPlus SaaS Security Assessment ✓ KISA, Cloud Service Information Security Guide(SaaS) ✓ KISA, Cloud Vulnerability Analysis Guide ✓ SK Infosec, Cloud Security Guide ✓ CIS Benchmark for Cloud Services ✓ Vendor, Reference Architecture Guide for SaaS Copyright 2021. Chanwoo Lee All rights reserved. “Must develop our own framework.”
Source Link : https://www.bettercloud.com/monitor/saas-operations-management/ SaaS Management Reference Architecture
13 “Can derive your requirements through a security assessment.” Assessment 2021 SecurityPlus SaaS Security Assessment ✓ Service : Business and background ✓ Data : Legal and Privacy ✓ Architecture : Design and Configuration ✓ Application : Vendor and Product ✓ Authority : Accounts and Authentication ✓ Security Control : Data Leakage and Malware ✓ Monitoring : Log feeding and Integration ✓ Stakeholder : Role and Responsibility Copyright 2021. Chanwoo Lee All rights reserved. “Must analyze various use cases.”
Source Link : https://securityboulevard.com/2019/04/penetration-testing-for-saas-companies/ SaaS Security Reference Architecture
15 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Data] ✓ Personal Information protection ✓ SSL/TLS Encryption ✓ Data and password Encryption ✓ Data Retention ✓ Tenant Restriction ✓ Sharing and Download permission disable ✓ Upload File Scanning ✓ Validation of file extension Copyright 2021. Chanwoo Lee All rights reserved.
16 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Access] ✓ SSO/SAML Integration ✓ IP Restriction ✓ Multi-Factor Authentication ✓ Guest Access Control ✓ Session Timeout ✓ Concurrent-session Control ✓ Minimizing Pre-defined roles and permissions Copyright 2021. Chanwoo Lee All rights reserved.
17 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Etc] ✓ Log management ✓ SIEM integration ✓ Management of API Key, Plug-in, Third-Party Program ✓ Application Configuration Analysis Copyright 2021. Chanwoo Lee All rights reserved. “Must discuss with stakeholders in advance.”
Source Link : https://www.hubspot.com/pricing/ SaaS Pricing Model(Subscription)
Source Link : https://www.atlassian.com/ko/software/jira Issue Tracking system(Ex. JIRA)
20 “Must get visibility and evaluate periodically.” Evaluation 2021 SecurityPlus SaaS Security Assessment ✓ Is the Assessment process operating as designed? ✓ What are the ways to improve the Assessment process? ✓ Has the security level of our company increased through the Assessment process? ✓ Did you miss anything in the Assessment process? ✓ What are the problems you are facing while Assessment process? ✓ What can you create after solving those problems? Copyright 2021. Chanwoo Lee All rights reserved. “Must evaluate on a paper and evidence basis.”
Source Link : https://docs.servicenow.com/ Dashboard(Ex. ServiceNow)
Source Link : https://congruentagile.com/2020/03/16/less-sprint/ Review and Retrospective
Clear Detail
24 Wrap-up Customer should consider security in SDLC. Customer Need to develop their own framework.
Changing people through technology Chanwoo Lee | Richard Blog blog.naver.com/jg706 Facebook www.facebook.com/jg706 Slideshare www.slideshare.net/jg706 Linkedin www.linkedin.com/in/jg706 Youtube www.youtube.com/channel/UC5Hs9p5_euXJbaf5E7Hx7Ag jg719411@nate.com | 010-4772-0130

More Related Content

PDF
FUZZING & SOFTWARE SECURITY TESTING
MuH4f1Z
 
PDF
Deep Dive Spider Engine
I Goo Lee
 
PDF
Performance testing with JMeter
Mikael Kundert
 
PDF
Introduction to K6
Knoldus Inc.
 
PPT
IBM AppScan - the total software security solution
hearme limited company
 
PPTX
WebSphere Application Server Family (Editions Comparison)
ejlp12
 
PDF
Configuration Management in Ansible
Bangladesh Network Operators Group
 
PDF
Web Assembly (on the server)
Massimo Ferre'
 
FUZZING & SOFTWARE SECURITY TESTING
MuH4f1Z
 
Deep Dive Spider Engine
I Goo Lee
 
Performance testing with JMeter
Mikael Kundert
 
Introduction to K6
Knoldus Inc.
 
IBM AppScan - the total software security solution
hearme limited company
 
WebSphere Application Server Family (Editions Comparison)
ejlp12
 
Configuration Management in Ansible
Bangladesh Network Operators Group
 
Web Assembly (on the server)
Massimo Ferre'
 

What's hot (20)

PPTX
Security Testing Training With Examples
Alwin Thayyil
 
PDF
Robot framework 을 이용한 기능 테스트 자동화
Jaehoon Oh
 
PPTX
Cross browser testing
Perfecto Mobile
 
PDF
[144]mobile앱에서 효율적인 storage 접근 방법
NAVER D2
 
PDF
[오픈소스컨설팅] 프로메테우스 모니터링 살펴보고 구성하기
Ji-Woong Choi
 
PDF
Loadrunner vs Jmeter
Atul Pant
 
PPT
Test Automation Framework Designs
Sauce Labs
 
PPTX
Apache JMeter - A brief introduction
silenceIT Inc.
 
PPT
JMeter
Md Samsul Kabir
 
PDF
Offensive (Web, etc) Testing Framework: My gift for the community - BerlinSid...
Abraham Aranguren
 
PDF
Arista: DevOps for Network Engineers
Philip DiLeo
 
PDF
JMeter vs LoadRunner | Edureka
Edureka!
 
PPT
Performance Testing
sharmaparish
 
PPTX
Service Discovery using etcd, Consul and Kubernetes
Sreenivas Makam
 
PDF
Automation - Apache JMeter
Wira Santos
 
PDF
VMware vSphere
零壹科技股份有限公司
 
PPTX
Load Testing with k6 framework
Svetlin Nakov
 
PPTX
Mobile Application Security
Ishan Girdhar
 
PPTX
Performance Testing using LoadRunner
Kumar Gupta
 
PPTX
Pulsar in the Lakehouse: Apache Pulsar™ with Apache Spark™ and Delta Lake - P...
StreamNative
 
Security Testing Training With Examples
Alwin Thayyil
 
Robot framework 을 이용한 기능 테스트 자동화
Jaehoon Oh
 
Cross browser testing
Perfecto Mobile
 
[144]mobile앱에서 효율적인 storage 접근 방법
NAVER D2
 
[오픈소스컨설팅] 프로메테우스 모니터링 살펴보고 구성하기
Ji-Woong Choi
 
Loadrunner vs Jmeter
Atul Pant
 
Test Automation Framework Designs
Sauce Labs
 
Apache JMeter - A brief introduction
silenceIT Inc.
 
JMeter
Md Samsul Kabir
 
Offensive (Web, etc) Testing Framework: My gift for the community - BerlinSid...
Abraham Aranguren
 
Arista: DevOps for Network Engineers
Philip DiLeo
 
JMeter vs LoadRunner | Edureka
Edureka!
 
Performance Testing
sharmaparish
 
Service Discovery using etcd, Consul and Kubernetes
Sreenivas Makam
 
Automation - Apache JMeter
Wira Santos
 
VMware vSphere
零壹科技股份有限公司
 
Load Testing with k6 framework
Svetlin Nakov
 
Mobile Application Security
Ishan Girdhar
 
Performance Testing using LoadRunner
Kumar Gupta
 
Pulsar in the Lakehouse: Apache Pulsar™ with Apache Spark™ and Delta Lake - P...
StreamNative
 
Ad

Similar to [이찬우 강사] Security plus saas security assessment_2021.04 (20)

PDF
July 31, 2020 - CSA LA event slides
SoCalLAAdmin
 
PPTX
Cloud computing elisheba wiggins
Elisheba Wiggins
 
PDF
Finance Technologies: Buy or Rent
ScottMadden, Inc.
 
PPTX
Build a complete security operations and compliance program using a graph dat...
Erkang Zheng
 
PPTX
Multi cloud governance best practices - AWS, Azure, GCP
Faiza Mehar
 
PPT
Up 2011-ken huang
Ken Huang
 
PPTX
Cloud Seeding
Trish McGinity, CCSK
 
PPTX
Codeless Security for the Apps You Buy & Build on AWS
CloudLock
 
PDF
Comparing cloud-computing-providers-11-factors-to-consider-profit bricks-ebook
ProfitBricks
 
PPTX
Security that works with, not against, your SaaS business
CloudPassage
 
PPTX
Secure development 2014
Ariel Evans
 
PPTX
Geting cloud architecture right the first time linthicum interop fall 2013
David Linthicum
 
PDF
Lightning Workshop London
Keir Bowden
 
PDF
(SACON) Anant Shrivastava - cloud pentesting
Priyanka Aash
 
PDF
Webinar–That is Not How This Works
Synopsys Software Integrity Group
 
PDF
Best Practices for Your CMP RFP or RFI
RightScale
 
PDF
Migrating to Cloud? 5 motivations and 10 key security architecture considerat...
Yew Weisin
 
PDF
Spring Cloud Stream: What's New in 2.x—and What's Next?
VMware Tanzu
 
PDF
Cloud Computing and Security - by KLC Consulting
kylelai
 
PDF
Practical Guide to Platform-as-a-Service
Cloud Standards Customer Council
 
July 31, 2020 - CSA LA event slides
SoCalLAAdmin
 
Cloud computing elisheba wiggins
Elisheba Wiggins
 
Finance Technologies: Buy or Rent
ScottMadden, Inc.
 
Build a complete security operations and compliance program using a graph dat...
Erkang Zheng
 
Multi cloud governance best practices - AWS, Azure, GCP
Faiza Mehar
 
Up 2011-ken huang
Ken Huang
 
Cloud Seeding
Trish McGinity, CCSK
 
Codeless Security for the Apps You Buy & Build on AWS
CloudLock
 
Comparing cloud-computing-providers-11-factors-to-consider-profit bricks-ebook
ProfitBricks
 
Security that works with, not against, your SaaS business
CloudPassage
 
Secure development 2014
Ariel Evans
 
Geting cloud architecture right the first time linthicum interop fall 2013
David Linthicum
 
Lightning Workshop London
Keir Bowden
 
(SACON) Anant Shrivastava - cloud pentesting
Priyanka Aash
 
Webinar–That is Not How This Works
Synopsys Software Integrity Group
 
Best Practices for Your CMP RFP or RFI
RightScale
 
Migrating to Cloud? 5 motivations and 10 key security architecture considerat...
Yew Weisin
 
Spring Cloud Stream: What's New in 2.x—and What's Next?
VMware Tanzu
 
Cloud Computing and Security - by KLC Consulting
kylelai
 
Practical Guide to Platform-as-a-Service
Cloud Standards Customer Council
 
Ad

More from Lee Chanwoo (20)

PDF
AI_introduction and requirements(2024.05.12).pdf
Lee Chanwoo
 
PDF
[이찬우 강사] bithumb_Privacy_Lecture(2021.12)
Lee Chanwoo
 
PDF
[이찬우 강사] Information security and digital sex crime_lecture(2020.09)
Lee Chanwoo
 
PDF
[이찬우 강사] Hyundai hcn busan_4th_indusry(2020.02.13)
Lee Chanwoo
 
PDF
[이찬우 강사] Persons with disabilities education(2020.02.05)
Lee Chanwoo
 
PDF
[이찬우 강사] Study on isms-p integration issues and major defects(20181017)
Lee Chanwoo
 
PDF
[이찬우 강사] Osstem implant information security education_final version(20181011)
Lee Chanwoo
 
PDF
[이찬우 강사] Sua_mentoring_career war vs employment battle_final_version(20180901)
Lee Chanwoo
 
PDF
[이찬우 강사] Korea it information security academy public seminar presentation_st...
Lee Chanwoo
 
PDF
[이찬우 강사] Korea it information security academy dongyang mirae university job ...
Lee Chanwoo
 
PDF
[이찬우 강사] Hsp 4th industry innovation and financial security fn(20180721)
Lee Chanwoo
 
PDF
[이찬우 강사] Global convergence forum security of crypto currency exchange 20180714
Lee Chanwoo
 
PDF
[이찬우 강사] Ing life information security education 20180625 final version
Lee Chanwoo
 
PDF
[이찬우 강사] Gyeonggi Institute of Science & Technology Promotion_employee inform...
Lee Chanwoo
 
PDF
Cyber resilience 201705
Lee Chanwoo
 
PDF
사이버 보안 트렌드_이찬우_2018020309_최종발표버전
Lee Chanwoo
 
PDF
Isaca knowledge concert 금융보안 발표자료 이찬우(2017.07.17)_final
Lee Chanwoo
 
PPTX
2016 sua 발표스터디 이찬우
Lee Chanwoo
 
PDF
2016 레몬세미나 발표자료 이찬우 final
Lee Chanwoo
 
PDF
2016 산업보안 공모전 일반부 장려상
Lee Chanwoo
 
AI_introduction and requirements(2024.05.12).pdf
Lee Chanwoo
 
[이찬우 강사] bithumb_Privacy_Lecture(2021.12)
Lee Chanwoo
 
[이찬우 강사] Information security and digital sex crime_lecture(2020.09)
Lee Chanwoo
 
[이찬우 강사] Hyundai hcn busan_4th_indusry(2020.02.13)
Lee Chanwoo
 
[이찬우 강사] Persons with disabilities education(2020.02.05)
Lee Chanwoo
 
[이찬우 강사] Study on isms-p integration issues and major defects(20181017)
Lee Chanwoo
 
[이찬우 강사] Osstem implant information security education_final version(20181011)
Lee Chanwoo
 
[이찬우 강사] Sua_mentoring_career war vs employment battle_final_version(20180901)
Lee Chanwoo
 
[이찬우 강사] Korea it information security academy public seminar presentation_st...
Lee Chanwoo
 
[이찬우 강사] Korea it information security academy dongyang mirae university job ...
Lee Chanwoo
 
[이찬우 강사] Hsp 4th industry innovation and financial security fn(20180721)
Lee Chanwoo
 
[이찬우 강사] Global convergence forum security of crypto currency exchange 20180714
Lee Chanwoo
 
[이찬우 강사] Ing life information security education 20180625 final version
Lee Chanwoo
 
[이찬우 강사] Gyeonggi Institute of Science & Technology Promotion_employee inform...
Lee Chanwoo
 
Cyber resilience 201705
Lee Chanwoo
 
사이버 보안 트렌드_이찬우_2018020309_최종발표버전
Lee Chanwoo
 
Isaca knowledge concert 금융보안 발표자료 이찬우(2017.07.17)_final
Lee Chanwoo
 
2016 sua 발표스터디 이찬우
Lee Chanwoo
 
2016 레몬세미나 발표자료 이찬우 final
Lee Chanwoo
 
2016 산업보안 공모전 일반부 장려상
Lee Chanwoo
 

Recently uploaded (20)

PDF
FINAL CALL-6th International Conference on Networks & IOT (NeTIOT 2025)
IJMIT JOURNAL
 
PDF
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
PPT
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
PPTX
Digital Literacy And Online Safety on internet
riksa rifqi
 
PDF
The New Creative Director: How AI Tools for Social Media Content Creation Are...
SageTitans
 
PPTX
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
PDF
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
PDF
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
PPTX
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
PDF
Introduction to the IoT system, how the IoT system works
TinBinh
 
PPTX
E -tech empowerment technologies PowerPoint
kylebalatero12
 
PPT
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
PPTX
Internet___Basics___Styled_ presentation
poonam62133
 
PPTX
innovation process that make everything different.pptx
SoumyadipPaul18
 
PDF
💰 𝐔𝐊𝐓𝐈 𝐊𝐄𝐌𝐄𝐍𝐀𝐍𝐆𝐀𝐍 𝐊𝐈𝐏𝐄𝐑𝟒𝐃 𝐇𝐀𝐑𝐈 𝐈𝐍𝐈 𝟐𝟎𝟐𝟓 💰
GRAB
 
PPTX
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
PPTX
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
PPTX
Job_Card_System_Styled_lorem_ipsum_.pptx
Jeffkigen
 
PPTX
artificialintelligenceai1-copy-210604123353.pptx
b45r14
 
DOCX
Unit-3 cyber security network security of internet system
shivangisharma636228
 
FINAL CALL-6th International Conference on Networks & IOT (NeTIOT 2025)
IJMIT JOURNAL
 
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
Digital Literacy And Online Safety on internet
riksa rifqi
 
The New Creative Director: How AI Tools for Social Media Content Creation Are...
SageTitans
 
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
Introduction to the IoT system, how the IoT system works
TinBinh
 
E -tech empowerment technologies PowerPoint
kylebalatero12
 
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
Internet___Basics___Styled_ presentation
poonam62133
 
innovation process that make everything different.pptx
SoumyadipPaul18
 
💰 𝐔𝐊𝐓𝐈 𝐊𝐄𝐌𝐄𝐍𝐀𝐍𝐆𝐀𝐍 𝐊𝐈𝐏𝐄𝐑𝟒𝐃 𝐇𝐀𝐑𝐈 𝐈𝐍𝐈 𝟐𝟎𝟐𝟓 💰
GRAB
 
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
Job_Card_System_Styled_lorem_ipsum_.pptx
Jeffkigen
 
artificialintelligenceai1-copy-210604123353.pptx
b45r14
 
Unit-3 cyber security network security of internet system
shivangisharma636228
 

[이찬우 강사] Security plus saas security assessment_2021.04

  • 1. 2021 SecurityPlus SaaS Security Assessment (From a practical point of view) 이 찬 우
  • 2. How to use cloud securely?
  • 3. In short, Customer should consider security in SDLC.
  • 4. 4 What’s wrong with this pictures?
  • 5. 5 Some things don’t change over time.
  • 7. Source Link : https://www.information-age.com/public-cloud-revenue-to-grow-6-3-in-2020-gartner-123490499/ The SaaS market is growing rapidly
  • 8. Source Link : https://www.bmc.com/blogs/saas-growth-trends/ What are the biggest companies?
  • 9. Source Link : https://snazlan.wordpress.com/2016/12/09/topic-0020-assessment-vs-evaluation/
  • 10. 10 Preparation → Assessment → F/up → Evaluation
  • 11. 11 “Can refer to various references for SaaS security assessment.” Preparation 2021 SecurityPlus SaaS Security Assessment ✓ KISA, Cloud Service Information Security Guide(SaaS) ✓ KISA, Cloud Vulnerability Analysis Guide ✓ SK Infosec, Cloud Security Guide ✓ CIS Benchmark for Cloud Services ✓ Vendor, Reference Architecture Guide for SaaS Copyright 2021. Chanwoo Lee All rights reserved. “Must develop our own framework.”
  • 12. Source Link : https://www.bettercloud.com/monitor/saas-operations-management/ SaaS Management Reference Architecture
  • 13. 13 “Can derive your requirements through a security assessment.” Assessment 2021 SecurityPlus SaaS Security Assessment ✓ Service : Business and background ✓ Data : Legal and Privacy ✓ Architecture : Design and Configuration ✓ Application : Vendor and Product ✓ Authority : Accounts and Authentication ✓ Security Control : Data Leakage and Malware ✓ Monitoring : Log feeding and Integration ✓ Stakeholder : Role and Responsibility Copyright 2021. Chanwoo Lee All rights reserved. “Must analyze various use cases.”
  • 14. Source Link : https://securityboulevard.com/2019/04/penetration-testing-for-saas-companies/ SaaS Security Reference Architecture
  • 15. 15 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Data] ✓ Personal Information protection ✓ SSL/TLS Encryption ✓ Data and password Encryption ✓ Data Retention ✓ Tenant Restriction ✓ Sharing and Download permission disable ✓ Upload File Scanning ✓ Validation of file extension Copyright 2021. Chanwoo Lee All rights reserved.
  • 16. 16 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Access] ✓ SSO/SAML Integration ✓ IP Restriction ✓ Multi-Factor Authentication ✓ Guest Access Control ✓ Session Timeout ✓ Concurrent-session Control ✓ Minimizing Pre-defined roles and permissions Copyright 2021. Chanwoo Lee All rights reserved.
  • 17. 17 “Must implement the requirements you have derived.” F/up 2021 SecurityPlus SaaS Security Assessment [Etc] ✓ Log management ✓ SIEM integration ✓ Management of API Key, Plug-in, Third-Party Program ✓ Application Configuration Analysis Copyright 2021. Chanwoo Lee All rights reserved. “Must discuss with stakeholders in advance.”
  • 18. Source Link : https://www.hubspot.com/pricing/ SaaS Pricing Model(Subscription)
  • 19. Source Link : https://www.atlassian.com/ko/software/jira Issue Tracking system(Ex. JIRA)
  • 20. 20 “Must get visibility and evaluate periodically.” Evaluation 2021 SecurityPlus SaaS Security Assessment ✓ Is the Assessment process operating as designed? ✓ What are the ways to improve the Assessment process? ✓ Has the security level of our company increased through the Assessment process? ✓ Did you miss anything in the Assessment process? ✓ What are the problems you are facing while Assessment process? ✓ What can you create after solving those problems? Copyright 2021. Chanwoo Lee All rights reserved. “Must evaluate on a paper and evidence basis.”
  • 21. Source Link : https://docs.servicenow.com/ Dashboard(Ex. ServiceNow)
  • 22. Source Link : https://congruentagile.com/2020/03/16/less-sprint/ Review and Retrospective
  • 24. 24 Wrap-up Customer should consider security in SDLC. Customer Need to develop their own framework.
  • 25. Changing people through technology Chanwoo Lee | Richard Blog blog.naver.com/jg706 Facebook www.facebook.com/jg706 Slideshare www.slideshare.net/jg706 Linkedin www.linkedin.com/in/jg706 Youtube www.youtube.com/channel/UC5Hs9p5_euXJbaf5E7Hx7Ag jg719411@nate.com | 010-4772-0130