Secure Software Development

Jason Grembi is an IT Consultant for Sterling Connect, LLC, and a Sun Certified Java programmer. His consulting business focuses on software development, testing, process assessment/improvement, QA, and specification and design. Grembi has more that 4 years teaching at the university level, 1 year at the community college level, and 10 years of experience in systems and software development.

1 WHY YOU NEED TO LEARN SECURE PROGRAMMING
2 CODING: NOT A SOLITARY PRACTICE
Software Development Lifecycle
Development Team
Watching it Unfold
3 QUALITY AND SECURITY: THE FIRST FOCUS
Code for Quality
Build Security In
4 GOING LIVE: WHAT TO DO ON DAY 1
The Application Guideline
Coming to Terms: Defining Your Conventions
Agree To Disagree
5 SECURITY REQUIREMENTS
Requirement Gathering
Identify Assets
Risk Management
6 COLLABORATING AT THE WHITEBOARD: SECURITY AND QUALITY ARE NO ACCIDENT
Object Modeling
Choose the Language
Design quality code
7 DEVELOPMENT TOOLS: HOW TO CHOOSE WISELY
IDEs tools
Versioning tools
Networking tools
8 CODING IN THE CUBE: LETS GET TO WORK
Functions, procedures, and code blocks
Structuring for Validation
Structured Programming
Debugging
9 TESTING
When your peers are looking
Code Reviews
Testing when everyone is looking
Classification of security defects
Measurement of secure performance
Managing the overall Testing Process
10 AFTER THE GLORY: MAINTAINING IT 9 TO 5
Were scanning for threats
Like networking
Startup maintenance
How to code during maintenance
How to apply security requirements
How to advance in maintenance.
11 THE SECURITY CONSULTING COMPANIES: KNOW WHOS OUT THERE
Lightweight Processes - Apply CLASP to your process
12 THE HORIZON: MAINTAINING YOUR PROFESSION
The impact of outsourcing
How you gain knowledge to secure your position
What you will need to know for the next project
How to be informed