The Essential Role Of Infosec In Secure Software Development
No ratings
Presented at OWASP Appsec 2009 by
Secure software development won't succeed without substantial collaboration among the infosec teams in an organization. In this session, I describe and discuss various established secure software practices and why involvement of infosec staff is so vital to their success. Citing numerous examples of case studies, I spotlight myriad successes and failures encountered in both small and very large software development organizations. Additionally, for each software security practice, I provide an actionable list of things a software development team should start doing to immediately improve its results through collaboration with (generally in-house) infosec staff.