Sorry, not available in this language yet

« Previous: How does Agile overcome common…

Next: The 5 pillars of a successful… »

Software security initiative capabilities: Getting started

Posted by Synopsys Editorial Team on Friday, July 8, 2016

A software security initiative (SSI) often begins with one of three common security capabilities:

Penetration testing
Code review
Some sort of secure design review (e.g., threat modeling)

During this year’s OWASP AppSec California, Synopsys’ Jim DelGrosso presented on the benefits and drawbacks of these software security initiative capabilities. Watch as he illustrates how each capability fits into building a mature SSI. The presentation also examines when and how tools and people fit into a mature SSI, defect discovery techniques, and how to control risk with third-party software and technology.

This post is filed under Managing security risks.

Synopsys Editorial Team

Posted by

Synopsys Editorial Team

SEE AUTHOR ARCHIVE

More from Managing security risks

Assessing design quality for better software due diligence

Assessing design quality for better software due diligence

Posted by Ashwin Ala on March 23, 2023

Mergers and acquisitions due diligence

Instantly scalable dynamic application security testing

Instantly scalable dynamic application security testing

Posted by Vishrut Iyengar on March 1, 2023

The step-by-step guide to threat modeling

The step-by-step guide to threat modeling

Posted by Charlotte Freeman on February 14, 2023

Threat modeling

Navigating software due diligence with a Black Duck Audit

Navigating software due diligence with a Black Duck Audit

Posted by Steven Power on February 10, 2023

Subscribe

Related Tags