Security Innovation: Your Partner for Successful SDL Deployment

As part of Microsoft’s commitment to helping development organizations build and deploy more secure software, and due to the increasing external demand for the Microsoft Security Development Lifecycle (SDL), the industry-leading software security assurance process created by Microsoft in 2004, Microsoft has hand-picked nine vendors to be part of the SDL Pro Network – a group of security consultants and trainers that specialize in application security and have substantial experience and expertise with the methodology and technologies of the SDL.

Due to Security Innovation’s intimate knowledge of and experience with the Microsoft SDL, and its successful delivery of software security training and services to Fortune 500 companies, we are pleased to serve as a member of the Microsoft SDL Pro Network to help organizations adopt and deploy the SDL within their development teams.

SDL Implementation Case Study:  Sony Corporation

Security Innovation's Expertise with the Microsoft SDL

Security Innovation, an authority in secure software development, and training since 2002, is uniquely qualified to execute the roll-out of the SDL to progressive development organizations. Security Innovation has provided a number of training resources to Microsoft and has presented many of the concepts from our ground-breaking book, "How to Break Software Security,"  to Microsoft development teams.  Additionally, the methodologies presented in the book have been adopted by a number of Fortune 500 companies.

Value-Added Solutions

The multi-disciplinary expertise that Security Innovation possesses allows us to address the concerns of your organization throughout the development lifecycle for your software. Regardless of the challenges facing your organization, Security Innovation can help you solve your SDL needs in a variety of ways, including: 

• Consulting
  Our consulting services can guide you through the entire cycle of development, help you determine where the gaps in your current process can introduce vulnerabilities, and identify areas of risk in your existing procedures as well as suggest ways to mitigate those risks. Additionally, because we are also an application development organization, we have implemented the Microsoft SDL internally, and we are aware of the intricacies inherent in such an undertaking.

• Training 
  Security Innovation's training program is sought out by companies all over the world that want to secure their software development, shore up their processes and provide training and tools to help their teams continue to be successful. We offer both instructor-led and computer-based training that are customizable to suit the needs of the audience. 

• Products
  Providing teams with the tools that will make them successful in following the Microsoft SDL is another key component - one where Security Innovation excels. From Fuzz Testing to Attack Surface identification to Static Analysis, Security Innovation has the tools that will enable your groups to produce secure software. Security Innovation provides state-of-the art tools that were designed specifically with SDL in mind.