According to the latest Verizon Data Breach Report, 97% of breaches were avoidable through simple or intermediate controls, 54% of those breaches went undiscovered for multiple months, and 94% of all compromised data was behind firewalls and other perimeter defenses. Companies continue to pay hundreds of millions of dollars as a result of breaches and exploits. It is time to out an end the bleeding and take a proactive and appropriate approach to protecting our customers, ourselves, and partners.
Getting to a high level of security is not easy…there is no silver bullet nor instant solution. The challenge is made more difficult by the fact that there is not a directly tangible result of being strong and secure. Success is measured in things that do NOT happen. One does have to ask, how can I, as an individual, become a stronger software engineer?
Geared for IT stakeholders who want basic understanding of how OWASP views the current threat landscape, this targeted training session will explore the OWASP Top Ten Application Security Risks, providing a brief overview of each security risk and demonstrating several of the vulnerabilities and defenses. We will also relate these to the SANS/MITRE Monster Mitigations and the 2013 Verizon Data Breach Report. The session will wrap with a detailed, individualized, strength training program that you can use to build your application security strength and skills in preparation for defending against the continuing onslaught of attacks.
> About the Presenter...Dan Corsberg, Chief Technical Officer, Trivera Technologies
Dan Corsberg, Chief Technical Officer at Trivera Technologies Worldwide, brings over thirty years of software design and development experience, training development, management and delivery, and overall excellence in the classroom to our fast-paced organization. Dan has extensive experience in application and IT security, advanced Java and JEE development, object-oriented design and implementation, distributed/service-oriented architectures, and software project management. Dan heads up all things technical at Trivera, leading our engineering, training and development teams. He works relentlessly to guide the creation and execution of the most leading-edge technical education products and services for our clients, delivered by our exceptional, hand-picked technical services professionals and educators.
Dan holds two patents in applying knowledge-based processing techniques to real-time systems and another patent in XML-based collaborative authoring. This latter patent is a significant enabler for allowing large teams to work together in a highly distributed manner. Dan is an accomplished software engineer who has successfully delivered complex applications to a wide range of customers on time and within budget. He has experience leading development teams, working directly with customers to synthesize requirements, and performing analysis, design, and programming. Particular strengths include his application of advanced technology in ways that result in robust systems and the use of aggressive research to use the best ideas of others in systems he develops. Dan is a strident proponent of customer-driven requirements and requirements-driven software. As evidenced by his teaching experience, he is both a successful mentor as well as an accomplished communicator.
Most recently, Dan has been focused on three primary technical areas: Application and IT Security, Service Oriented Architecture and Web Services. His long history of working with XML, Java and JEE, in combination with classified and sensitive projects in the military, makes him a natural fit with these areas. Dan spearheaded the development and rollout of Trivera Technologies highly-regarded Best Defense Security Training Series, comprised of courses focused on best practices for secure application design, development and management. Dan has personally instructed a variety of these courses at Cisco Systems, Sandia National Laboratories, the Federal Reserve Board, Discover Financial, the Internal Revenue Service and many other firms with both federal and public orientation.
> Click here to Register or call toll free #: 844.475.4559 for more information.
This event can also be run as a private event for your organization, tailored to meet your specific needs and security challenges.