Secure SDLC in the Real World: Pitfalls Discovered & Treasure Collected Along the Way

A session at Security BSides DFW 2011

Saturday 5th November, 2011

3:00pm to 3:50pm (CST)

In "Pitfall!", a player must maneuver Pitfall Harry through a maze-like jungle to stay alive. Along the way, he must negotiate numerous hazards, try to recover treasure, and do it all in a limited time. Implementing OWASP's OpenSAMM in a large organization is kinda like playing that classic game. It's a little dangerous, requires vision, planning, and precision, and promises rewards. Like many of its size and with its mandate, the Texas Education Agency already has an SDLC. Enter Pitfall Phil. In an effort to build a stronger program, Pitfall Phil shifted the focus of TEA's application security program to align with OpenSAMM. I will present the hazards he discovered and the treasure he found while playing the game.

About the speaker

This person is speaking at this event.
Philip J Beyer

husband, father, Catholic Christian, Aikido practitioner, ultra-marathon runner, @AustinISSA Past Pres, @The_ABCo Dir of InfoSec bio from Twitter

Coverage of this session

Sign in to add slides, notes or videos to this session

Tell your friends!


Time 3:00pm3:50pm CST

Date Sat 5th November 2011

Short URL


View the schedule



See something wrong?

Report an issue with this session