In "Pitfall!", a player must maneuver Pitfall Harry through a maze-like jungle to stay alive. Along the way, he must negotiate numerous hazards, try to recover treasure, and do it all in a limited time. Implementing OWASP's OpenSAMM in a large organization is kinda like playing that classic game. It's a little dangerous, requires vision, planning, and precision, and promises rewards. Like many of its size and with its mandate, the Texas Education Agency already has an SDLC. Enter Pitfall Phil. In an effort to build a stronger program, Pitfall Phil shifted the focus of TEA's application security program to align with OpenSAMM. I will present the hazards he discovered and the treasure he found while playing the game.
husband, father, Catholic Christian, Aikido sensei, ultra-marathon runner, @AustinISSA President, Information Security Officer with the Texas Education Agency bio from Twitter
Sign in to add slides, notes or videos to this session