Finding and Fixing Application Security Vulnerabilities

Customer databases, enterprise applications, Big Data – the keys to your enterprise’s kingdom lie in its applications. But application security is often overlooked, both by software manufacturers and by internal app development teams. What steps can your organization take to find and repair application vulnerabilities – before your attackers discover them?

Top applications security expert Matt Tesauro, Senior Technical Project Coordinator for the OWASP Foundation, discusses key practices for scanning and securing applications and offers some insight on how to improve security in your software development organization.

Available:
On Demand
Duration:
1h 00min

Attend this event and you'll get:

  • 8 key concepts of a successful appsec program
  • Directions to free resources that will help your help your appsec program
  • An intro to the Open Software Maturity Model
  • An explanation of what makes application security unique
  • Answers for why all remediations are not the same

Featured Speakers

  • Hollis  Howell
    Hollis Howell
    Senior Manager of Application Security
    Rapid7

    Hollis Howell has contributed more than 25 years into the Operational and Administrative field of Information Systems and Programs. As a Sr. Manager of Application Security Specialists, Hollis is instrumental in overseeing the adoption and success of AppSpider into the Rapid7 Threat Exposure Management suite of solutions. His knowledge of the domain, the competition, the product, and the sales process has been incredibly integral in scaling the AppSpider business around the globe.

  • Matt  Tesauro
    Matt Tesauro
    Senior Technical Project Coordinator
    OWASP Foundation

    Matt Tesauro is currently working full-time for the OWASP Foundation, adding automation and awesome to OWASP projects. Previously, he was a founder and CTO of Infinitiv, a Senior Software Security Engineer at Pearson and the Senior Product Security Engineer at Rackspace. He is also an Adjunct Professor for the University of Texas Computer Science department teaching the next generation of CS students about Application Security. Matt is broadly experienced information security professional of 15 years specializing in application and cloud security. He has also presented and provided trainings at various international industry events including DHS Software Assurance Workshop, OpenStack Summit, SANS AppSec Summit, AppSec US, EU and LATAM. His work has included security consulting, penetration testing, threat modeling, code reviews, training and teaching at the University of Texas and Texas A&M University. He is a former board member of the OWASP Foundation and project lead for OWASP AppSec Pipeline & WTE projects. WTE is a collection of application security testing tools and the AppSec Pipeline project brings lessons from DevOps and Agile into Application Security. He holds two degrees from Texas A&M University and several security and Linux certifications.

Sponsored By