Software Development Lifecycle #FAILS

So many application security activities focus on finding and fixing bugs, but how is it that so many security problems end up in code in the first place?

In this session, we’ll walk through the phases of the software development lifecycle and identify points where organizations get security controls right, and where they miss the mark.

What you will take away from this talk:

  • Practical tips on kickstarting your program
  • Secure coding training #FAILS
  • Finding problems earlier in the SDLC
  • Building an ROI model