Ninja Developers: Penetration Testing and Your SDLC

摘要

Application security is one of the main risks that organizations can control today. As we continue to build new web applications and update our existing ones, security testing is a critical component in our security posture. But having a penetration test done by a third-party consultant for every update gets to be very expensive. In this presentation,Kevin Johnson of Secure Ideas will explain how your development staff can incorporate techniques from a j professional penetration test within their software development methodology. It doesn't matter if they are using Agile, RUP, or Google programming, these tips and tricks will help developers create more secure applications out of the gate. Kevin will present various methods and tricks based on his years of application penetration testing.These techniques are able to work within the development efforts already in place with minimal interruptions.