Security Innovation’s Joe Basirico a Featured Speaker at SOURCE Seattle 2017

Wilmington, MA - September 26, 2017 - Security Innovation, the worldwide leader in application security training and assessment services, today announced that on Thursday, October 5 at 3:00 p.m. PDT, Joe Basirico, the company’s VP of Services will be a featured speaker at SOURCE Seattle 2017.  His guidance will help organizations understand what it takes to implement a comprehensive, secure development process to reduce risk and eliminate exposure to cyberattacks.

Basirico’s presentation, “Building a Collaborative & Social Application Security Program,” is part of the company’s ongoing educational programing for security, IT, and development professionals.

Attendees of SOURCE Seattle 2017 can meet with the Security Innovation team at their booth.  Email jfranklin@securityinnovation.com to schedule a meeting with Security Innovation at the conference or at another time.

Session overview:

In today’s environment there is no arguing that a comprehensive secure development process is necessary. Fitting tools, technology, and security reviews into current development cycles has become table stakes for companies building the software of tomorrow.

Breaking the ”find and fix” vulnerability-based assessment cycle so that software is developed with security in mind from start to finish is critically important, but doing this without leveraging a collaborative and social application security program that addresses bug bounty programs, security researchers, and every aspect of vulnerability disclosure misses a huge opportunity.

Key takeaways:

Basirico will explore how security programs can reach beyond the Secure Systems Development Life Cycle (SDLC), including:

  • Bug Bounty Programs - Why you should invite security researchers to hack your products.
  • Marketing your Security Program - How and why to market your security program. What, how, and where to say it for maximum effectiveness.
  • How to Communicate with Security Researchers - What security researchers expect in communication, responsiveness, transparency and time to fix.
  • Vulnerability Disclosure Options - What public v. responsible disclosure means, and how to handle each.
  • Integration with an Existing Security Program - You may already be training your developers, using outside vendors, and performing internal security testing, where do these other aspects fit in?

About Security Innovation 

Since 2002, organizations have relied on Security Innovation for our unique software and application security expertise to help secure and protect sensitive data in the most challenging environments - automobiles, desktops, web applications, mobile devices and in the cloud.  A best in class security training, assessment and consulting provider, Security Innovation has been recognized as a Leader in the Gartner Magic Quadrant for Security Awareness Training for three years in a row.  Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit www.securityinnovation.com or connect with us on LinkedIn or Twitter.