Industry Leaders and Educators for Third Year in a Row Gather at Secure
Software Forum(R) Launch Event at RSA Conference to Discuss Directive for
Software Security
RSA CONFERENCE, SAN FRANCISCO, Feb. 8 /PRNewswire/ -- S.P.I. Dynamics,
Inc. yesterday announced results from the Secure Software Forum (SSF) 2006
(http://www.securesoftwareforum.org) educational initiatives and revealed details
of the Secure Software Forum 2007 program.
The SSF was first launched in February 2005 as an educational
initiative to provide leading executives spanning all disciplines within
the application lifecycle local forums to discuss their challenges,
experiences and best practices regarding the shared global mandate to
improve software security. The 2007 Secure Software Forum marks the third
year of this successful initiative.
"Organizations are learning that application security assurance is
critical in today's web-enabled environment and must be a deeply integrated
part of any enterprise's overall software development initiative," said
Howard Schmidt, keynote speaker for yesterday's Secure Software Forum 2007
kickoff event and International President of the Information Systems
Security Association (ISSA). "As one of the world's largest and most widely
recognized independent associations focused on information security across
the enterprise, ISSA is committed to raising awareness of this issue within
the entire organization and we are actively investigating ways to increase
awareness and training in this area."
Secure Software Forum 2006 Survey Results
Recent findings from 2006 SSF participants' survey indicate that
organizations are moving towards a more proactive approach to security
assurance in their development lifecycle. 43 percent noted that secure
coding experience is now a requirement for new development hires - a 25
percent increase over 2005 survey results. 57 percent of respondents said
they have integrated a security assurance program into their own
development process, representing a dramatic increase from the 70 percent
of respondents in the 2005 survey who indicated they had not. While these
numbers show promising advancements, results also found corporate secure
coding educational programs had only been implemented by 41 percent of
respondents, a slight increase over last year's finding of 36 percent.
Organizations participating in the 2006 SSF survey also reported:
- 48% have a combination of outsourced and in-house application
development efforts
- 32% have sophisticated security testing tools and a well defined
process
- 76% said their information security group was actively involved during
the requirements phase of the development process
- 76% are familiar with Microsoft's Security Development Lifecycle (SDL)
"We're very pleased with the progress that organizations have made to
integrate security assurance into their development process," said Brian
Cohen, president and CEO, SPI Dynamics. "We are particularly pleased to
have seen the increased participation from software developers and testing
professionals throughout the 2006 Secure Software Forum events."
Secure Software Forum 2007 Kickoff Event and Educational Program
Details of the Secure Software Forum 2007 program were also announced
at the launch event held on February 7th during the RSA Conference. This
year's Launch event commenced with a compelling keynote by International
ISSA President, Howard Schmidt. In addition, the Forum showcased a
distinguished panel of experts including:
- Panel moderator, Jim Reavis, President, Reavis Consulting Group
- Forum presenter, Thomas Dawkins, Sr. Marketing Manager, Microsoft
Corporation
- Forum presenter, Brian Cohen, President & CEO, SPI Dynamics
- Jennifer Fischer, Director, VISA USA
- William Geimer, Director of Information Assurance, Open System
Sciences, USAID
- Steve Lipner, Senior Director of Security Engineering Strategy,
Microsoft Corporation
- Caleb Sima, CTO & Founder, SPI Dynamics
- Dr. Bill Scherlis, Professor - School of Computer Science, Carnegie
Mellon University
The Secure Software Forum was founded to encourage a movement of change
towards more secure software and increase the awareness of the need for
close collaboration among those involved in the software development
lifecycle. The Forum launch, traditionally held during the RSA Conference,
facilitates an educational discussion on the challenges facing
organizations as they prepare to integrate a secure process within their
current development culture. In addition, the launch event and subsequent
events throughout the year aim to highlight the resulting successes of
companies developing with security as a fundamental component of the
software development lifecycle. For more information, please visit
http://www.securesoftwareforum.org.
About Secure Software Forum
The Secure Software Forum is an in-depth educational initiative
centered around providing leading executives at corporations and government
agencies spanning all disciplines within the application lifecycle local
forums to discuss their challenges, experiences and best practices around
the shared global mandate to improve software security. For more
information on the Secure Software Forum and the ongoing educational
initiatives, please visit http://www.securesoftwareforum.org.
The names of actual companies and products mentioned herein may be the
trademarks of their respective owners.
SOURCE S.P.I. Dynamics, Inc.
 back to top
Related links:
http://www.spidynamics.com
http://www.securesoftwareforum.org
http://www.rsaconference.com/2007/US
CONTACT:
Michelle Schafer of Merritt Group,
+1-703-390-1525, or mobile, +1-703-403-6377, or
schafer@merrittgrp.com, for S.P.I. Dynamics, Inc., or Ashley
Vandiver of S.P.I. Dynamics, Inc., +1-678-781-4841, or mobile,
+1-404-432-8657, or avandiver@spidynamics.com
|
