Software Security Assurance Summit



Introduction

Marci McCarthy

Marci McCarthy
CEO and President of T.E.N.
CEO and Chairman of ISE® Talent
Biography

Kelly Collins

Kelly Collins
President, Public Sector
Fortify
Biography

Download the Presentation (pdf)

Understanding Software Security in Support of Federal Compliance

name

Alex Fry
Published author of The CSSLP Prep Guide,
Ethical Hacker and Security Expert

Founder of Strong Crypto
Biography

name

Pravir Chandra
Director of Strategic Services
Fortify
Biography

Download the Presentation (pdf)
Many have debated that efforts such as FISMA, have done little to prevent the epidemic of data compromise, identify theft, espionage and more identifies the key issues and provides a long-term goal of creating a secure cyber infrastructure. 

However, with recent changes to FISMA to include the reporting on:

  • Number of new systems went live in a reporting period
  • Number of new systems used 800-53 controls as system design requirements?
  • Number of new systems used 800-53A in the process of system acceptance testing?
  • Numbers of contract systems have the FISMA requirements in the contract or equivalent language?

There is a new effort to get ahead of the curve and integrate the Security into the Software Development Lifecycle (SDLC) and overall system design.  This discussion will touch on areas of opportunity as it relates to SSA and Federal Compliance.

Mastering SSA: A Case Study of the Air Force’s Application Software Assurance Center of Excellence

name

Eric Friese
Senior Software Security Consultant
Fortify
Biography

name

Shakeel Tufail
Managing Consultant
Fortify
Biography

Download the Presentation (pdf)
Over the last three years, Eric Friese has worked extensively in the Air Force Application Software Assurance Center of Excellence as a subject matter expert aiding in their mission to incorporate software security into the development lifecycles of Air Force applications.  During this session Eric will share the tips and techniques, challenges, standards as well as best practices associated with setting up and running a Software Assurance Center of Excellence.

Accelerating Your Software Security Efforts

name

Eric Friese
Senior Software Security Consultant
Fortify
Biography

Download the Presentation (pdf)
Demonstration of Fortify 360 RTA Product and Advanced Configuration Techniques

Executive Showcase: Military Health

John Keane

John Keane
Information Technology Specialist
Military Health System
Biography

In this Executive Showcase, John Keane will share his secrets behind obtaining consensus amongst senior management at Military Health for a high profile and successful SSA Project.  He will also share how he was able to generate a significant Return on Investment (ROI) for his organization with this engagement.
Download Presentation (pdf)
Presentation Materials #1 (doc)
Presentation Materials #2 (xls)

Fireside Chat with Sushant Rao, Pricinpal Product Manager, Fortify

Download the Presentation (pdf)

Executive Roundtables

name

Pravir Chandra
Director of Strategic Services
Fortify
Biography

Best Practices and Practical Applications of Software Security Models > View Roundtable Summary

Jason Taule

Jason Taule
CISO & CPO
CSC Civil and Health Services Group
Biography

Making Application Security an Integral Part of Your Operations > View Roundtable Summary

Suzanne Hall

Suzanne Hall
Vice President, Information Technology
American Red Cross
ISE® Mid-Atlantic People's Choice Award Winner 2006
Biography

From Security Assessment to Vulnerability Remediation: The Realities of Deploying a Cloud-Based Application Risk Management Solution > View Roundtable Summary

SSA ROI, Metrics and Insights: Conquering Resistance and Building the Compelling Business Case

name

Amir Hartman
Founder and Managing Director
Mainstay Partners
Biography

Download the Presentation (pdf)
In this session, will provide an informative step-by-step methodology on how to build a compelling business case and generate an ROI for your own SSA Program.   If you are considering an SSA Program or have one in progress, this session will provide you with the insights and tools to be successful.

Keynote: Going Global - Cyber Warfare Prevention

Louis Freeh

Louis Freeh
Former Director
FBI
Biography

Heralded for transforming the FBI from a national law-enforcement agency to a global-security Institution, Louis Freeh doubled the number of bureau branches worldwide. During his eight-year tenure, crime—like so many other industries of that era—became globalized.  With Cybersecurity gaining additional prominence in the past year due to increased cybercrime, threats to critical infrastructure and the Google Aurora cyberattacks. Freeh will share his insights on how this 21st century threat calls for a robust 21st century response from our government, our private sector and our citizens.