Along with the proliferation of IoT devices in our homes and lives has come string of laughable breaches to the extent that IoT has become synonymous with botnets. Many, if not most, of these breaches could have been easily prevented by simply applying well established best practices from the software industry. Yet, device manufacturers frequently ignore security concerns.After briefly exploring the problem space, we will explore how to solve it. The talk will focus largely on securing consumer-like devices (e.g. Raspberry Pi), and include topics like building a good pipeline, OTA, testing and basic security best practices. IoT security is not rocket surgery.Learning Outcomes:Understanding the IoT security problem, and the threats involvedThreat modelling for consumer-like devices such as the Raspberry PiHow to secure these devicesHow to build security practices into your pipeline