CA Technologies, profile picture
Uploaded byCA Technologies
PDF, PPTX537 views

Keynote: Making Security a Competitive Advantage

The document discusses the importance of integrating security into the application economy to maximize performance and minimize risks, highlighting that a majority of data breaches stem from application defects and identity fraud. CA's security strategy focuses on ensuring secure software development through various methodologies and tools, fostering a frictionless security experience. It emphasizes the need for organizations to embrace new security thinking and technologies in an increasingly digital and connected world.

Embed presentation

Download as PDF, PPTX
Make  Security  a  Competitive  Advantage Mordecai  (Mo)  Rosen   SECURITY SECURITY General  Manager,  Security CA  Technologies General  Manager CA  Veracode Sam  King
2 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Eliminate  Barriers   Between  Ideas  and  Outcomes CREATE  AN  AGILE   BUSINESS BUILD  BETTER       APPS  FASTER MAKE  SECURITY  A   COMPETITIVE  ADVANTAGE MAXIMIZE  APPLICATION   PERFORMANCE
3 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS HOME  AUTOMATION PHYSICAL  SECURITY EHEALTH  DEVICES WEARABLES SMART  METERS SHIPPING  LOGISTICS PROPERTY  MANAGEMENT   ECOLOGY FACTORY  AUTOMATION SMART  PHONES TABLETS CAMERAS PHONES TELEVISIONS AUTOMOBILES THERMOSTATS WWW CHAT  &  IM API SERVICES CLOUD SERVICES First  a  Brief  History  of THE  EXPANDING   DIGITAL   EXPERIENCE  
4 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS THE  DIGITAL   EXPERIENCE   Is  Between  Users   and  Applications HOME  AUTOMATION PHYSICAL  SECURITY EHEALTH  DEVICES WEARABLES SMART  METERS SHIPPING  LOGISTICS PROPERTY  MANAGEMENT   ECOLOGY FACTORY  AUTOMATION SMART  PHONES TABLETS CAMERAS PHONES TELEVISIONS AUTOMOBILES THERMOSTATS WWW CHAT  &  IM API SERVICES CLOUD SERVICES
5 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS MAKES  EVERY  COMPANY  A  SOFTWARE  COMPANY APPLICATION EXPLOSION CONSUMERIZED IT CONNECTED ENTERPRISES DIGITAL MARKETPLACES DIGITAL WORKPLACES CONNECTED IOT The  Application  Economy
6 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS The  Application  Economy REQUIRES  NEW  THINKING  ON  SECURITY FIREWALL IDS/IPS WEB  PROXY ANTI-­VIRUS ANTI-­MALWARE 100% INEFFECTIVE USERS  &  APPS UNDER  ATTACK SHADOW  IT 30% Of  all  attacks  will  be  in   shadow  IT  resources APP  DEFECTS 90% Of  breaches caused   by  application  defects 3RD  PARTY  RISK 70% Of  attacks  targeted a   secondary  source   IDENTITY  FRAUD 80% Of  breaches  used  lost   stolen  &  weak  credentials CREDIT  FRAUD 42% Of  all  data  stolen  is credit  card  data   FireEye  Study  of  6  Months  of  Penetration  Testing  
7 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS A QUESTION OF TRUST USERS INTERACTIONS APPLICATIONS Security  Becomes
8 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CA  Security  Strategy  To   SECURING  THE  APPLICATION  ECONOMY TRUSTED USERS  & APPLICATIONS   PREVENTATIVE   DETECTION  & RESPONSIVE INSIGHT   ANALYTICS  & INTELLIGENCE FRICTIONLESS   SECURITY  & EXPERIENCE CORE  PRINCIPLES  
9 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS IDENTITY  & ACCESS   APPLICATION SECURITY API SECRUITY PAYMENT SECURITY PRODUCT  PORTFOLIO CA  Security  Strategy  To   SECURING  THE  APPLICATION  ECONOMY
10 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS LINES  OF  CODE   SCANNED6  TRILLION 1400  CUSTOMERS 400K APPLICATION   SECURITY   ADVISORY   HOURS 35.5M SECURITY  FLAWS  FIXED 4X GARTNER MQ  LEADER 24 LANGUAGES 77 FRAMEWORKS APPLICATION SECURITY CA  VERACODE
11 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Ensuring GREAT  SOFTWARE  IS  SECURE  SOFTWARE EMPOWER DEVELOPERS  TO   SECURE  CODE INTEGRATED  INTO CONTINUOUS   DELIVERY EARLY  DETECT TO  REDUCE  COST AUTOMATED  TO   REDUCE  MTTR
12 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CODECOMMIT BUILD TEST RELEASE OPERATE SECURITY  INTO  CONTINUOUS  DELIVERY   TEST TEST DevSecOps SECURE  SOFTWARE   DEVELOPENT SECURITY   ASSURANCE OPERATIONAL   APPLICATION  SECURITY Merging
13 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CODECOMMIT BUILD TEST RELEASE OPERATE SECURE  SOFTWARE   DEVELOPENT SECURITY   ASSURANCE OPERATIONAL   APPLICATION  SECURITY DevSecOps TEST TEST CA  Veracode  Greenlight CA  Veracode  Static  Analysis CA  Veracode  Web  Application  Scanning CA  Veracode  Runtime  Protection CA  Veracode  Software  Composition  Analysis CA  Veracode  Integrations,  APIs CA  Veracode  eLearning
14 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Securing  Applications  With   NEXT  GENERATION  IDENTITY  MANAGEMENT 80%of  all  data  breaches  exploit   lost,  stolen  &  weak  credentials HYBRID CLOUD DEVELOPER APIs BEHAVIOR ANALYTICS
15 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS API   ENABLED HIGH  SCALE   APPLIANCE HYBRID CLOUD SECURE   CONTINUOUS DELIVERY     PRIVILEGED GOVERNANCE Central  Authentication Credential  Vault Policy  Enforcement Role  -­ Based  Access Federated  Identity Session  Recording CA  Privileged  Access  Manager PROTECTING PRIVILEGED IDENTITY
16 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ENABLING APP TO APP TRUST User  &  App   Authentication  API Mobile   Authentication  API Secure  Server   Communications Context  Based Risk  Analysis CA  Rapid  App  Security Risk  Based  Analytics
17 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS RISK ANALYTICS WORKS EMPIRICALLY
18 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS Digital  Payments   Fraud Directory Identity   Management Privileged   Access   Management Single   Sign-­‐on Identity   Governance Risk  Based   Authentication Orchestrating   Identity  &   Access Employees  &   Administrators Customers  &   Partners Internet  of  Things Developers Cloud   Services On   Premise   Apps Mobile Web API CA  Security  &  Identity  Management  Portfolio
19 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
20 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
21 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
22 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
23 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
24 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
25 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
26 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
27 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
28 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
29 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
30 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
31 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
32 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
33 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
34 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
35 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CA  World ’17 See  the  latest   innovation  in   the  demo  area   Immerse  in  all   of  the  customer   case  studies   on  stage Meet  with  our   product  teams   at  the  executive   center
36 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Thank  you. Stay  connected  at  communities.ca.com &  community.veracode.com
37 COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Security  and  DevSecOps For  more  information  on  Security, please  visit:  http://cainc.to/CAW17-­Security For  more  information  on  DevSecOps, please  visit:  http://cainc.to/CAW17-­DevSecOps For  more  information  on  Veracode, please  visit:  http://community.veracode.com

More Related Content

PDF
Case Study: Privileged Access in a World on Time
byCA Technologies
 
PDF
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...
byCA Technologies
 
PDF
Making Security Work—Implementing a Transformational Security Program
byCA Technologies
 
PDF
Leveraging Monitoring Governance: How Service Providers Can Boost Operational...
byCA Technologies
 
PDF
Emerging Managed Services Opportunities in Identity and Access Management
byCA Technologies
 
PDF
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...
byCA Technologies
 
PDF
Keynote: Making Security a Competitive Advantage
byCA Technologies
 
PDF
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...
byCA Technologies
 
Case Study: Privileged Access in a World on Time
byCA Technologies
 
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...
byCA Technologies
 
Making Security Work—Implementing a Transformational Security Program
byCA Technologies
 
Leveraging Monitoring Governance: How Service Providers Can Boost Operational...
byCA Technologies
 
Emerging Managed Services Opportunities in Identity and Access Management
byCA Technologies
 
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...
byCA Technologies
 
Keynote: Making Security a Competitive Advantage
byCA Technologies
 
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...
byCA Technologies
 

What's hot

PDF
Establish Digital Trust as the Currency of Digital Enterprise
byCA Technologies
 
PDF
Application Experience Analytics Services: The Strategic Digital Transformati...
byCA Technologies
 
PDF
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...
byCA Technologies
 
PDF
Application Experience Analytics Services: The Strategic Digital Transformati...
byCA Technologies
 
PDF
Blockchain: Strategies for Moving From Hype to Realities of Deployment
byCA Technologies
 
PDF
When You Test Matters: Why Testing Early in the SDLC is Important
byCA Technologies
 
PDF
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...
byCA Technologies
 
PDF
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...
byCA Technologies
 
PDF
Mobile Payment Security with CA Rapid App Security
byCA Technologies
 
PPTX
CA Mainframe Resource Intelligence
byCA Technologies
 
PDF
CA Microgateway: Deploying, Configuring, and Extending CA Microgateway
byCA Technologies
 
PDF
Application Security in a DevOps World
byCA Technologies
 
PDF
The CA Technologies | Veracode Platform: A 360-Degree View of Your Applicatio...
byCA Technologies
 
PDF
Securing Container-Based Applications at the Speed of DevOps
byWhiteSource
 
PDF
Keynote: Unlock the Power of Continuous Delivery with End-to-End, Integrated ...
byCA Technologies
 
PPTX
Zscaler mondi webinar
byZscaler
 
PPTX
apidays LIVE New York 2021 - APIOps: automating API operations for speed and ...
byapidays
 
PDF
Esg lab-validation-check-point-cloud guard-mar-2018
byAlejandro Daricz
 
PDF
SACON - Beyond corp (Arnab Chattopadhayay)
byPriyanka Aash
 
PDF
Protecting Our Cyber-Identity in a Physical and Virtual World for IoT Ecosystem
byCA Technologies
 
Establish Digital Trust as the Currency of Digital Enterprise
byCA Technologies
 
Application Experience Analytics Services: The Strategic Digital Transformati...
byCA Technologies
 
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...
byCA Technologies
 
Application Experience Analytics Services: The Strategic Digital Transformati...
byCA Technologies
 
Blockchain: Strategies for Moving From Hype to Realities of Deployment
byCA Technologies
 
When You Test Matters: Why Testing Early in the SDLC is Important
byCA Technologies
 
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...
byCA Technologies
 
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...
byCA Technologies
 
Mobile Payment Security with CA Rapid App Security
byCA Technologies
 
CA Mainframe Resource Intelligence
byCA Technologies
 
CA Microgateway: Deploying, Configuring, and Extending CA Microgateway
byCA Technologies
 
Application Security in a DevOps World
byCA Technologies
 
The CA Technologies | Veracode Platform: A 360-Degree View of Your Applicatio...
byCA Technologies
 
Securing Container-Based Applications at the Speed of DevOps
byWhiteSource
 
Keynote: Unlock the Power of Continuous Delivery with End-to-End, Integrated ...
byCA Technologies
 
Zscaler mondi webinar
byZscaler
 
apidays LIVE New York 2021 - APIOps: automating API operations for speed and ...
byapidays
 
Esg lab-validation-check-point-cloud guard-mar-2018
byAlejandro Daricz
 
SACON - Beyond corp (Arnab Chattopadhayay)
byPriyanka Aash
 
Protecting Our Cyber-Identity in a Physical and Virtual World for IoT Ecosystem
byCA Technologies
 

Similar to Keynote: Making Security a Competitive Advantage

PDF
Enable and Secure Business Growth in the New Application Economy
byCA Technologies
 
PDF
Putting Security in Identity-as-a-Service
byCA Technologies
 
PPTX
CA API Gateway: Web API and Application Security
byCA Technologies
 
PDF
Securing Your Enterprise Continuous Delivery Pipelines with CA Automation Sol...
byCA Technologies
 
PDF
Creating the Borderless Workplace
byCA Technologies
 
PDF
Domenico Maracci, Stefano Sali - Secure Continuous Delivery - Sicurezza e Dev...
byCodemotion
 
PDF
Establish Digital Trust as the Currency of Digital Enterprise
byCA Technologies
 
PDF
CA Security - Deloitte IAM Summit - Vasu
byVasu Surabhi
 
PDF
Automating the Modern Software Factory
byCA Technologies
 
PDF
5 steps end to end security consumer apps
byCA API Management
 
PDF
How CA Technologies Enables Its Own Employees and Secures Access to Applicati...
byCA Technologies
 
PDF
From Rogue One to Rebel Alliance: Building Developers into Security Champions
byDigital Transformation EXPO Event Series
 
PDF
CA Identity Suite – Extending Identity Management to the Business User
byCA Technologies
 
PDF
Streamlining AppSec Policy Definition.pptx
bytmbainjr131
 
PDF
Mainframe Opening Keynote Address: Mainframe Reframed for the Application Eco...
byCA Technologies
 
PDF
Breached! App Attacks, Application Protection and Incident Response
byResilient Systems
 
PPTX
Leveraging Technology for Government Service Delivery
byeGov Magazine
 
PDF
TW SEAT - DevOps: Security 干我何事?
bysmalltown
 
PDF
CA's Vision for Business Automation
byCA Technologies
 
PDF
CA's Vision for Business Automation
byCA Technologies
 
Enable and Secure Business Growth in the New Application Economy
byCA Technologies
 
Putting Security in Identity-as-a-Service
byCA Technologies
 
CA API Gateway: Web API and Application Security
byCA Technologies
 
Securing Your Enterprise Continuous Delivery Pipelines with CA Automation Sol...
byCA Technologies
 
Creating the Borderless Workplace
byCA Technologies
 
Domenico Maracci, Stefano Sali - Secure Continuous Delivery - Sicurezza e Dev...
byCodemotion
 
Establish Digital Trust as the Currency of Digital Enterprise
byCA Technologies
 
CA Security - Deloitte IAM Summit - Vasu
byVasu Surabhi
 
Automating the Modern Software Factory
byCA Technologies
 
5 steps end to end security consumer apps
byCA API Management
 
How CA Technologies Enables Its Own Employees and Secures Access to Applicati...
byCA Technologies
 
From Rogue One to Rebel Alliance: Building Developers into Security Champions
byDigital Transformation EXPO Event Series
 
CA Identity Suite – Extending Identity Management to the Business User
byCA Technologies
 
Streamlining AppSec Policy Definition.pptx
bytmbainjr131
 
Mainframe Opening Keynote Address: Mainframe Reframed for the Application Eco...
byCA Technologies
 
Breached! App Attacks, Application Protection and Incident Response
byResilient Systems
 
Leveraging Technology for Government Service Delivery
byeGov Magazine
 
TW SEAT - DevOps: Security 干我何事?
bysmalltown
 
CA's Vision for Business Automation
byCA Technologies
 
CA's Vision for Business Automation
byCA Technologies
 

More from CA Technologies

PDF
Mainframe as a Service: Sample a Buffet of IBM z/OS® Platform Excellence
byCA Technologies
 
PDF
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...
byCA Technologies
 
PDF
Case Study: How The Home Depot Built Quality Into Software Development
byCA Technologies
 
PDF
Case Study: Putting Citizens at The Center of Digital Government
byCA Technologies
 
PDF
How Components Increase Speed and Risk
byCA Technologies
 
PDF
Case Study: How The Home Depot Built Quality Into Software Development
byCA Technologies
 
PDF
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...
byCA Technologies
 
PDF
Case Study: Continuous Delivery in a Tech Debt Laden World by Talk Talk.
byCA Technologies
 
PDF
Case Study: United Airlines Transforms Release Management for Its Modern Soft...
byCA Technologies
 
PDF
Keynote: Unlock the Power of Continuous Delivery with End-to-End, Integrated ...
byCA Technologies
 
PDF
Industry Keynote: Redefine Operations in a DevOps World—The New Role for Site...
byCA Technologies
 
Mainframe as a Service: Sample a Buffet of IBM z/OS® Platform Excellence
byCA Technologies
 
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...
byCA Technologies
 
Case Study: How The Home Depot Built Quality Into Software Development
byCA Technologies
 
Case Study: Putting Citizens at The Center of Digital Government
byCA Technologies
 
How Components Increase Speed and Risk
byCA Technologies
 
Case Study: How The Home Depot Built Quality Into Software Development
byCA Technologies
 
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...
byCA Technologies
 
Case Study: Continuous Delivery in a Tech Debt Laden World by Talk Talk.
byCA Technologies
 
Case Study: United Airlines Transforms Release Management for Its Modern Soft...
byCA Technologies
 
Keynote: Unlock the Power of Continuous Delivery with End-to-End, Integrated ...
byCA Technologies
 
Industry Keynote: Redefine Operations in a DevOps World—The New Role for Site...
byCA Technologies
 

Recently uploaded

PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 

Keynote: Making Security a Competitive Advantage

  • 1.
    Make  Security  a Competitive  Advantage Mordecai  (Mo)  Rosen   SECURITY SECURITY General  Manager,  Security CA  Technologies General  Manager CA  Veracode Sam  King
  • 2.
    2 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Eliminate  Barriers   Between  Ideas  and  Outcomes CREATE  AN  AGILE   BUSINESS BUILD  BETTER       APPS  FASTER MAKE  SECURITY  A   COMPETITIVE  ADVANTAGE MAXIMIZE  APPLICATION   PERFORMANCE
  • 3.
    3 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS HOME  AUTOMATION PHYSICAL  SECURITY EHEALTH  DEVICES WEARABLES SMART  METERS SHIPPING  LOGISTICS PROPERTY  MANAGEMENT   ECOLOGY FACTORY  AUTOMATION SMART  PHONES TABLETS CAMERAS PHONES TELEVISIONS AUTOMOBILES THERMOSTATS WWW CHAT  &  IM API SERVICES CLOUD SERVICES First  a  Brief  History  of THE  EXPANDING   DIGITAL   EXPERIENCE  
  • 4.
    4 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS THE  DIGITAL   EXPERIENCE   Is  Between  Users   and  Applications HOME  AUTOMATION PHYSICAL  SECURITY EHEALTH  DEVICES WEARABLES SMART  METERS SHIPPING  LOGISTICS PROPERTY  MANAGEMENT   ECOLOGY FACTORY  AUTOMATION SMART  PHONES TABLETS CAMERAS PHONES TELEVISIONS AUTOMOBILES THERMOSTATS WWW CHAT  &  IM API SERVICES CLOUD SERVICES
  • 5.
    5 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS MAKES  EVERY  COMPANY  A  SOFTWARE  COMPANY APPLICATION EXPLOSION CONSUMERIZED IT CONNECTED ENTERPRISES DIGITAL MARKETPLACES DIGITAL WORKPLACES CONNECTED IOT The  Application  Economy
  • 6.
    6 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS The  Application  Economy REQUIRES  NEW  THINKING  ON  SECURITY FIREWALL IDS/IPS WEB  PROXY ANTI-­VIRUS ANTI-­MALWARE 100% INEFFECTIVE USERS  &  APPS UNDER  ATTACK SHADOW  IT 30% Of  all  attacks  will  be  in   shadow  IT  resources APP  DEFECTS 90% Of  breaches caused   by  application  defects 3RD  PARTY  RISK 70% Of  attacks  targeted a   secondary  source   IDENTITY  FRAUD 80% Of  breaches  used  lost   stolen  &  weak  credentials CREDIT  FRAUD 42% Of  all  data  stolen  is credit  card  data   FireEye  Study  of  6  Months  of  Penetration  Testing  
  • 7.
    7 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS A QUESTION OF TRUST USERS INTERACTIONS APPLICATIONS Security  Becomes
  • 8.
    8 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CA  Security  Strategy  To   SECURING  THE  APPLICATION  ECONOMY TRUSTED USERS  & APPLICATIONS   PREVENTATIVE   DETECTION  & RESPONSIVE INSIGHT   ANALYTICS  & INTELLIGENCE FRICTIONLESS   SECURITY  & EXPERIENCE CORE  PRINCIPLES  
  • 9.
    9 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS IDENTITY  & ACCESS   APPLICATION SECURITY API SECRUITY PAYMENT SECURITY PRODUCT  PORTFOLIO CA  Security  Strategy  To   SECURING  THE  APPLICATION  ECONOMY
  • 10.
    10 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS LINES  OF  CODE   SCANNED6  TRILLION 1400  CUSTOMERS 400K APPLICATION   SECURITY   ADVISORY   HOURS 35.5M SECURITY  FLAWS  FIXED 4X GARTNER MQ  LEADER 24 LANGUAGES 77 FRAMEWORKS APPLICATION SECURITY CA  VERACODE
  • 11.
    11 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Ensuring GREAT  SOFTWARE  IS  SECURE  SOFTWARE EMPOWER DEVELOPERS  TO   SECURE  CODE INTEGRATED  INTO CONTINUOUS   DELIVERY EARLY  DETECT TO  REDUCE  COST AUTOMATED  TO   REDUCE  MTTR
  • 12.
    12 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CODECOMMIT BUILD TEST RELEASE OPERATE SECURITY  INTO  CONTINUOUS  DELIVERY   TEST TEST DevSecOps SECURE  SOFTWARE   DEVELOPENT SECURITY   ASSURANCE OPERATIONAL   APPLICATION  SECURITY Merging
  • 13.
    13 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CODECOMMIT BUILD TEST RELEASE OPERATE SECURE  SOFTWARE   DEVELOPENT SECURITY   ASSURANCE OPERATIONAL   APPLICATION  SECURITY DevSecOps TEST TEST CA  Veracode  Greenlight CA  Veracode  Static  Analysis CA  Veracode  Web  Application  Scanning CA  Veracode  Runtime  Protection CA  Veracode  Software  Composition  Analysis CA  Veracode  Integrations,  APIs CA  Veracode  eLearning
  • 14.
    14 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Securing  Applications  With   NEXT  GENERATION  IDENTITY  MANAGEMENT 80%of  all  data  breaches  exploit   lost,  stolen  &  weak  credentials HYBRID CLOUD DEVELOPER APIs BEHAVIOR ANALYTICS
  • 15.
    15 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS API   ENABLED HIGH  SCALE   APPLIANCE HYBRID CLOUD SECURE   CONTINUOUS DELIVERY     PRIVILEGED GOVERNANCE Central  Authentication Credential  Vault Policy  Enforcement Role  -­ Based  Access Federated  Identity Session  Recording CA  Privileged  Access  Manager PROTECTING PRIVILEGED IDENTITY
  • 16.
    16 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ENABLING APP TO APP TRUST User  &  App   Authentication  API Mobile   Authentication  API Secure  Server   Communications Context  Based Risk  Analysis CA  Rapid  App  Security Risk  Based  Analytics
  • 17.
    17 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS COPYRIGHT  ©  2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS RISK ANALYTICS WORKS EMPIRICALLY
  • 18.
    18 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS Digital  Payments   Fraud Directory Identity   Management Privileged   Access   Management Single   Sign-­‐on Identity   Governance Risk  Based   Authentication Orchestrating   Identity  &   Access Employees  &   Administrators Customers  &   Partners Internet  of  Things Developers Cloud   Services On   Premise   Apps Mobile Web API CA  Security  &  Identity  Management  Portfolio
  • 19.
    19 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
  • 20.
    20 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
  • 21.
    21 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
  • 22.
    22 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
  • 23.
    23 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD        #NOBARRIERS CONTROLLING  PRIVILEGED  ACCESS IN  A  WORLD  ON  TIME
  • 24.
    24 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
  • 25.
    25 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
  • 26.
    26 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS APPLICATION SECURITY TESTING FRICTIONLESS  
  • 27.
    27 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
  • 28.
    28 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
  • 29.
    29 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
  • 30.
    30 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS ARTHUR WONG Interview  With SVP  &  GM DXC  Security  
  • 31.
    31 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
  • 32.
    32 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
  • 33.
    33 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
  • 34.
    34 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS BREAKING BARRIERS AWARD Mo  Ahddoud First  UK  critical  infrastructure   company  running  100%  in   the  cloud   Todd  Oxford Enabled  disaster  recovery   access  to  comply  with  FEMA   first  &  second  line  response   regulations Mark  Merkow Integrating  app  security   testing  into  SDLC  for  500+   developer  organization
  • 35.
    35 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS CA  World ’17 See  the  latest   innovation  in   the  demo  area   Immerse  in  all   of  the  customer   case  studies   on  stage Meet  with  our   product  teams   at  the  executive   center
  • 36.
    36 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Thank  you. Stay  connected  at  communities.ca.com &  community.veracode.com
  • 37.
    37 COPYRIGHT  © 2017  CA.  ALL  RIGHTS  RESERVED#CAWORLD #NOBARRIERS Security  and  DevSecOps For  more  information  on  Security, please  visit:  http://cainc.to/CAW17-­Security For  more  information  on  DevSecOps, please  visit:  http://cainc.to/CAW17-­DevSecOps For  more  information  on  Veracode, please  visit:  http://community.veracode.com