Application Security Best Practices

At the meeting you will receive 2 beer tickets, heavy appetizers, and most importantly a hardy discussion on key Information Security issues from  knowledgeable practitioners. 

This month's discussion will be an interactive conversation about the current best practices in application security, including three major types of application security activities: penetration testing, code review, and architecture/design review. Attendees will discuss which of these activities they typically perform as part of their SDLC, the strengths and weaknesses of each activity, and how all three fit into the overall security strategy of the organization. Bring your own questions about application security, whether they are about in-house development or third-party software--and we will also have some questions for the audience about the level of security that is being built into their SDLC.

The discussion will be led by Daniel Ramsbrock, who has been in the security field for over 10 years, with most of that time focused on application security. After three years at CapTech Ventures, he spent two years as a full-time consultant with Cigital, where he performed a variety of security activities, including code review/remediation, application penetration testing, and secure architecture reviews. Since 2014, he has been doing independent application security consulting through his Glen Allen-based company, Enigma Technologies, where he works with Cigital and several other partner firms on a variety of projects.

While CVA-ISSA events normally cost $15-20 we are able to discount this event to only $10 per person.

So register now come enjoy a great night with CPE credit generating discussion, good beer, and a chance to network with Information Security peers.