Security in the SDLC

Building security into the software development lifecycle is one of my primary research areas – and recently TechTarget asked me to do a video and podcast on the topic. They’ve been syndicated for viewing/listening through BusinessWeek and other outlets. If you’re interested in this topic, please check out the links below.

Countdown: Selling Security in the SDLC – Podcast

Building security into the software development lifecycle takes more than just a plan. You’re going to need the support and involvement of both the development and security/audit organizations in order to make it work, and that will take some effort. This podcast, featuring security expert Diana Kelley, will help you develop a plan for selling the value of security to all of the constituencies who matter in your organization, from the executive suite down to the developers and testers.

Software Reliability: Building Security In – Video

Fixing software security vulnerabilities during development is expensive, difficult and time-consuming. But fixing them after deployment is far more expensive and counterproductive. In this video featuring security expert Diana Kelley, learn state-of-the-art techniques for building a secure software development process.