Webcasts

What are the most secure development languages? What are the most prevalent flaws common between COTS and internally developed code? Is there a way to automate code reviews to find the CWE Top 25? What are the shortfalls of Blackberry spyware?

Ask Chris(es)

Join us for a unique Q&A session with Veracode’s triumvirate of security sages—Chris Wysopal (CTO & Founder), Christien Rioux (Chief Scientist), and Chris Eng (Director of Security Research)—where they will answer your questions about application security trends, technology and next generation security threats.

What’s on your mind? Submit your questions and join us on Wednesday, August 18th at 11 a.m. EST to hear the answers.

It is an imperative to include security testing in application development. Yet, with Agile’s fast pace, and lean concepts, it easy to see how many organizations would simply consider testing for application security defects to be too costly in terms of both time and resources. This webinar addresses these concerns and describes methods that utilize Veracode’s Security Review and methodologies for security testing that succeed in the Agile world. Join us on this Agile case study webinar to hear and discuss:

• At what stage in my Agile SDLC should I be thinking about security?
• Considerations for implementing Security into your Agile SDLC
• How Veracode integrates security into OUR agile SDLC

An Agile development process promotes a rigorous project management approach for rapid delivery of high-quality software. Agile requires inspection, adaptation, teamwork, self-organization, accountability, and best practices. Security testing should also be built into your Agile devlopment lifecycle and is a best practice. Join us on this Agile overview webinar to hear and discuss:

• An Overview of Agile Development and why companies are adopting it
• Considerations for implementing Security into your Agile SDLC
• Why Security is a Key requirement in an Agile SDLC

The SANs/CWE list of the Top 25 Most Dangerous Programming Errors is already becoming the "standard" for developing secure applications in many large enterprises, and even the State of New York and DTCC plan to implement procurement contracts that include language mandating application security. Join, Chris Wysopal, security industry guru and one of the 30 contributing authors of the SANs Top 25, as he discusses the:

• Prevalence of attacks using vulnerabilities listed in the SANs Top 25
• Impact of attacks on your application and your customers
• Methods to identify, track and remediate these vulnerabilities

As vulnerabilities in software increasingly lead to high-profile data breaches, enterprises and government agencies are increasingly requiring independent proof that the software or services they are purchasing are secure. Additionally, new compliance requirements such as PCI PA-DSS, OCC Bulletin 2008-16, the Cybersecurity Act of 2009 and the SANS Application Procurement Language require application security verification.

Join Veracode for this informative webcast as we discuss the five reasons you should get your software VerAfied

There is no such thing as an internally developed application anymore. You think you know the sources of your code base—internal development teams, outsourcers, open source, etc. But do you know the inherent security risks in that code base? The government calls this SOUP—Software of Unknown Pedigree, but in the enterprise it’s often termed as third –party risk.

Join Veracode's Sam King, Vice President of Product Marketing, in a webcast where she shares her insight on 3rd Party Risk.

Meeting the SANS Top 25 and OWASP Top 10 are just some of the checkboxes internal development teams are struggling to comply with in the delivery of secure software. Developer education in secure coding is the lynchpin for securing the SDLC and maintaining a secure application portfolio.

Join Veracode's Jon Stevenson, Senior Vice President of Technology and Service Operations, in a webcast where he shares his insight on securing the SDLC.

The "Application Risk in Business Survey", conducted by Forrester Research and Veracode, revealed that enterprises are struggling to protect their organizations from the costly and growing threat of application security breaches. The study of nearly 200 enterprises interviewed Development, Security and Risk professionals across the US & UK, and confirmed that risk associated with insecure software is a very real concern and a top priority for management and developers alike.

Join Forrester Research’s Principal Analyst Chenxi Wang Ph.D. and Veracode CTO, Chris Wysopal, in a webinar where they will be sharing the complete results from the survey along with their expert commentary on industry best practices.

Join Forrester Research’s Chenxi Wang and Veracode CTO, Chris Wysopal, in a webinar that will not only discuss the challenges and best practices of securing your 3rd party software, but also explore the actionable strategies your organization can take to implement a successful application security strategy even when resources are limited.

The commercial-off-the-shelf (COTS) software market represents over $350 Billion in yearly sales, yet the burden of minimizing risk and controlling operational cost from insecure third-party software has been placed largely on the enterprises purchasing COTS applications. Join Veracode's Director of Product Marketing, Mike Puglia, for a discussion on software security and learn about best-practices which leading organizations are using to lower their risks and liabilities from commercial software.

With over $50 billion in custom code being developed in locations such as India, China, and Eastern Europe, enterprises are looking for ways to gain insight into the security and risk found in their outsourced applications. Join Veracode's John Jacott and Mike Puglia for a discussion on approaches and best practices that leading organizations are taking to secure their applications developed by offshore outsourcing providers.

"How Three Simple Steps can Help you Achieve Compliance and Mitigate Security Risk" - Join PCI QSA and Veracode Senior Solutions Architect John Jacott along with Veracode Director of Product Marketing Mike Puglia to discuss how to cost-effectively meet the code review requirements to achieve PCI compliance.

Veracode Founder and CTO Chris Wysopal and Burton Group Analyst Diana Kelley, present on: "Defending the Front Lines: Securing Your Web Applications."