ISSA-LA Security Summit XII

Managing Application Security in a Rapid Evolving Security Ecosystem

Application Security as an industry is still in its infancy. But like all healthy babies, AppSec is eating a great deal and is growing fast. This presentation will discuss some of the areas of application security that are rapidly evolving and how this evolution affects your ability as a manager to control this key area information security. From software procurement, contracts, insurance, software development activities and more, application security management touches almost every aspect of business operations. Managers need a solid understanding of both the technical and business justifications for these activities in order to be successful, and as the industry undergoes rapid change, so do the management challenges before us all.

Application security excellence requires a wide range of management involvement and activity. From managing procurement, contracts, software development activities and more, application security management touches many aspects of business operations. Managers need a solid understanding of both the technical and business justifications for these activities in order to be successful. This one day course will prepare managers to take on a wide variety of challenges in order to successfully guide your organization towards application security excellence.

Course Goals
- Understand the various stages of a secure SDLC
- Understand the types of attacks specific to application security
- Prepare managers to build contracts and procure software with application security considerations
- Build a business case for application security investment