Software Integrity Blog

Author Archive

Stephen Gardner


Stephen Gardner is an associate managing consultant at Synopsys. He studied physics at Durham University before starting a career in software security. Stephen has experience growing an application security program at one of the UK’s largest firms. His primary technical focus is secure design, leading security implementation assessments in a wide variety of software. In his spare time, Stephen can be found hiking, road biking, or engaged in a lively topical discussion over a good pint of ale.

Posts by Stephen Gardner:


What does GDPR enforcement mean for your business?

Now that a new year is upon us, we must remember that this is the year the General Data Protection Regulation (GDPR) supersedes Directive 95/36/EC. The new regulation will take effect May 25, 2018. In other words, this is the date by which organizations must be compliant. Primary obligations under GDPR GDPR applies to the processing of personal data of people in the EU by businesses operating in the EU. It’s important to note that GDPR doesn’t only apply to firms based in the EU—it applies to any organization providing a product or service to residents of the EU.

Continue Reading...

Posted in Software Compliance, Quality & Standards


7 fundamentals of an application security program

I recently found myself explaining how to take the first steps in an application security program to a good friend of mine who works at a mid-sized telecommunications software firm. For a small or medium-sized business, with highly-skilled technical staff, it can be difficult to dive in and immediately grasp the value of implementing a secure software development life cycle (SSDLC).

Continue Reading...

Posted in Application Security