What is security?
Why security is so important for web applications?
What are the benefits of having focus on security aspects of web applications?
What is information security?
How to keep security at pace with innovation?
32. Faster pace of delivery calls for a Practical Risk
Management for Software Development
33. Continuous Software Security Platform
Continuous Security at SDLC and Delivery *
Practice and Knowledge Assessment *
Hack Yourself First Training *
Coach the Coders to Secure on the job *
Secure Code
Review *
Penetration
Testing *
Environment
Scans *Biweekly
reporting *
Automation
and Tuning *
People Practices Tools
36. All of us have a part to play
- Program Managers
- Developers
- Security Professionals
- Executives
- Quality Assurance Professionals
Takeaway #1
37. Automation and tools do help, use it where it matters
Only humans can:
- Integrate security automation in to the Software Development
process
- Can sift through automation results and prioritize accordingly
- Understand the limits of automation tools and employ
intelligence
- Help you develop correct software security program based on
experience and context of business
Takeaway #2
38. Build Security-In the software itself rather than bolting on after the
software is done
Takeaway #3