Abstract:
There are multiple documents, methodologies and schools of thought for adding security activities to the various steps of the SDLC. In this presentation we will review several of the more popular methodologies and discuss advantages / disadvantages of each. We will also discuss common challenges and resistance when trying to add security to an entrenched development process.
Speaker:
Jerry Hoff, WhiteHat Security
Speaker Bio:
Jerry Hoff is vice president of the Static Code Analysis division at WhiteHat Security. In this role, he oversees the development of WhiteHats cloud-based static application security testing (SAST) service. Prior to WhiteHat, Mr. Hoff was co-founder and managing partner ofInfrared Security, a leading application security professional services firm. Mr. Hoff is an experienced application security consultant with years of professional development and training delivery. He is also the lead of the OWASP AppSec Tutorial Series.
Date: February 9
Time: 12:00 p.m. - 1:30 p.m.
COST (including presentation and buffet lunch):
ISSA/OC Members who RSVP and Pay Online: $15
$20 for non-members of ISSA
If any member would like to bring a guest please email their Name, Company and Email Address to pauljkennedyoc@gmail.com
PAYMENT: Cash or check at the door, no credit cards accepted.