OpenSAMM in the Real World: Pitfalls Discovered and Treasures Collected Along the Way
by Philip Beyer, Information Security Officer in Texas state government; security leader and active community organizer and participant at Texas Education Agency on Nov 01, 2011
- 1,715 views
:: History :: ...
:: History ::
LASCON 2011 - October 28, 2011 (Philip J Beyer and Scott Stevens) - http://lanyrd.com/shgmf
:: Summary ::
We will present the difficulties and successes involved with realigning the development lifecycle at TEA using OpenSAMM.
:: Abstract ::
In "Pitfall!", a player must maneuver Pitfall Harry through a maze-like jungle to stay alive. Along the way, he must negotiate numerous hazards, try to recover treasure, and do it all in a limited time. Implementing OWASP's OpenSAMM in a large organization is kinda like playing that classic game. It's a little dangerous, requires vision, planning, and precision, and promises rewards. Like many of its size and with its mandate, the Texas Education Agency already has an SDLC. Enter Pitfall Phil. In an effort to build a stronger program, Pitfall Phil shifted the focus of TEA's application security program to align with OpenSAMM. We will present the hazards he discovered and the treasure he found while playing the game.
- Total Views
- Views on SlideShare
- Embed Views