Register for this session HERE
About This Presentation:When teams start considering application security, it can feel like you are being thrown into the open ocean without a lifeboat. Security threats can hit you like waves from all sides, while you are just looking for a navigation system to help guide you through each step of securing your code.
In this presentation, Tony UcedaVélez, CEO of VerSprite cybersecurity consulting and leader of OWASP Atlanta, will steer attendees through the developer benefits, helpful security guides, and break from the storm that collaboratives like OWASP offer. He will also share some trade-favorite technologies, security tools, and techniques that you and your team can use to inject security into every stage of your development lifecycle.
All attendees will receive CEUs through ISSA and receive a copy of Tony’s presentation, complete with tools and resource links you can take back to the office.
Presentation Overview:- Security Challenges
- What is OWASP (Open Web Application Security Project)
- Why There is a Need for Governance and Standardization in Software Development
- What does OWASP have to offer?
- The OWASP Application Security Verification Standard (ASVS) Security Assurance Methodology
- OWASP Top Ten
- Developer Guides
- Security Cheat Sheets for Developers, AppSec, and InfoSec
- Open SAMM (Software Assurance Maturity Model)
- S-SDLC – Building Security-In
- OWASP AntiSamy API
- CSRFGuard
- ESPI (Enterprise Security API)
- Security Testing & OWASP – Prescriptive Advice for Testing
- VerSprite’s Top Security Tools for Developers and Security Professionals
- Open Source Tools for More Nefarious Voyages in AppSec Testing
- Let’s Dock This Discussion & Take It Online
