Hot SOSS:
A Look at Our New State of Software Security Data

Tuesday, January 12 – Wednesday, January 13

Tune in to Veracode Chief Research Officer Chris Eng’s keynote to get an overview of the state of software security this year, and how you can use the data to improve your own application security program.

Attend this session with Brittany O’Shea, Veracode senior product marketing manager, to hear more about our data on open source risk, and how to address it. You’ll learn:

• What our new data reveals about the extent and the security third-party code in modern applications
• Best practices surrounding identifying security vulnerabilities in open source libraries
• Realistic and practical ways to address the problem of open source risk"

All languages are not created equal. Don’t miss out as we dig into data from 130,000 application scans and discuss the latest trends in software security, including which languages can affect the security of your code.

As security increasingly becomes decentralized out to individual developers, what are the implications? Do developers have the right training and tools to own security testing and decision-making? We’ll sit down with Veracode customer George Garza, Director of Security & Risk at Manhattan Associations to discuss these answers, the implications on their organizations, and their take on the keys to success.

How did we get to this state of software security, and what’s the best way to address it? Are some apps by their very nature simply less secure? Or are we just not nurturing the security of apps correctly? Join us for an insightful talk on software security today, and practical steps you can take to reduce your risk of breach.

In a word, yes. Join this session to find out:

• Our data on the fix rates of organizations that employ multiple testing types vs. those that use just one
• Why you need multiple testing types
• How and when the different testing types work together throughout the software lifecycle.

Tune in to Veracode’s Director of Solution Architects John Smith’s keynote address to hear more about how to apply the lessons of 2020 to keep your organization secure.

99 problems – and a bug is always one. Join this session to see the flaws that made it into our Vulnerability Hall of Fame and learn which languages they tend to impact the most so you can stay one step ahead.

Whether you’re in healthcare, retail and hospitality, financial services, manufacturing, technology, or government and education, our recent analysis for the State of Software Security (SOSS) report uncovered key differences in software security between industries and found that these differences affect how quickly flaws are addressed.
Join us as we explore the software security of various industries and discuss:

• Key factors that impact software security health.
• Common flaw types affecting industries.
• Proven methods to improve software security.

Tune in to Veracode Chief Research Officer Chris Eng’s keynote at the conclusion of our two-day Virtual Summit to get a recap of the summit’s sessions and highlights of the actionable advice shared. He will cover what SOSS v11 tells us about:

• Open source risk
• Language’s affect on security
• “Nurturing” the security of code with a less than idea “nature”
• How the choice of testing type affects security outcomes

It’s been a challenging year for several industries, including the government and education sector. Join us as we further examine SOSS findings pertaining to these industries and discuss current AppSec trends impacting the government and education sector, common flaw types found in the sectors’ applications and steps that organizations can take to nurture their applications and improve their security health.