OWASP AppSec California 2016 – Software Security Metrics – Caroline Wong

More often than not, company executives ask the wrong questions about software security. This session will discuss techniques for changing the conversation about software security in order to encourage executives to ask the right questions – and provide answers that show progress towards meaningful objectives. Caroline will discuss a progression of software security capabilities and the metrics that correspond to different levels of maturity. She’ll discuss an approach for developing key metrics for your unique software security program and walk through a detailed example.
Caroline Wong
Cigital, Inc.
Director of Strategic Security Initiatives
Caroline Wong, CISSP, is the Director of Strategic Security Initiatives at Cigital, the world’s largest consulting firm specializing in software security. Prior to this role, Caroline led a product management team at Symantec and security teams at Zynga and eBay. Caroline is the author of “Security Metrics: A Beginner’s Guide” and is well known as a thought leader on the topics of security strategy, operations, and metrics. She has been a featured speaker at industry conferences including RSA (USA and Europe), ITWeb Summit (South Africa), Metricon, the Executive Women’s Forum, ISC2 and the Information Security Forum. Caroline contributed as a technical reviewer to the Center for Information Security Consensus Metrics Definitions. She graduated from U.C. Berkeley with a B.S. in Electrical Engineering and Computer Sciences, has a Certificate in Finance and Accounting from Stanford’s Executive Education Program, and is CISSP certified. Caroline was awarded the 2010 Women of Influence "One to Watch" Award by the Executive Women’s Forum.
For More Information Please Visit:- https://2016.appseccalifornia.org/

Source: SecurityTube.Net @ February 19, 2017 at 11:54PM