OpenSAMM in the Real World: Pitfalls Discovered and Treasure Collected Along the Way

A session at LASCON 2011 - Lonestar Application Security Conference

  • Scott Stevens

Friday 28th October, 2011

3:00pm to 3:50pm (CST)

In "Pitfall!", a player must maneuver Pitfall Harry through a maze-like jungle to stay alive. Along the way, he must negotiate numerous hazards, try to recover treasure, and do it all in a limited time. Implementing OWASP's OpenSAMM in a large organization is kinda like playing that classic game. It's a little dangerous, requires vision, planning, and precision, and promises rewards. Like many of its size and with its mandate, the Texas Education Agency already has an SDLC. Enter Pitfall Phil. In an effort to build a stronger program, Pitfall Phil shifted the focus of TEA's application security program to align with OpenSAMM. We will present the hazards he discovered and the treasure he found while playing the game.

About the speakers

This person is speaking at this event.
Philip J Beyer

husband, father, Catholic Christian, Aikido practitioner, ultra-marathon runner, @AustinISSA Past Pres, @The_ABCo Dir of InfoSec bio from Twitter

This person is speaking at this event.
Scott Stevens

Coverage of this session

Sign in to add slides, notes or videos to this session

Tell your friends!

When

Time 3:00pm3:50pm CST

Date Fri 28th October 2011

Short URL

lanyrd.com/shgmf

Official event site

lascon.org

View the schedule

Share

Topics

See something wrong?

Report an issue with this session