SIGN UP FOR OUR RISK
MANAGEMENT NEWSLETTER
Secure at the Source:
Implementing Source Code Vulnerability Testing in the Software Development Life Cycle
Software is only secure if it is written that way. And so, many organizations are now moving the responsibility and the skills for testing security into the software development life cycle. In this expert white paper, learn the best models for integrating source code vulnerability testing into the SDLC, and how to most efficiently merge security expertise with development resources.
Register Here to Download:
Get answers to tough questions like:
- Who should own software security testing in my organization?
- How can source code vulnerability testing fit within my existing development model?
- How can security and development resources work most efficiently together?
Written by one of the industry's leading experts in application security, this white paper describes 3 models for source code security testing in the software development life cycle, including pros, cons, and best practices.
Register Here to Download:
About Ounce Labs, Inc.
Ounce Labs' solutions enable organizations to identify, prioritize and eliminate business risk to the enterprise caused by software security vulnerabilities. With Ounce Labs, organizations strengthen application security, protect confidential information and verify compliance with both internal policies and industry mandates such as PCI, FISMA, HIPAA and others.
Ounce Labs' software analyzes application source code to provide the most complete and accurate analysis of application vulnerabilities and their relative priorities, enabling business users and IT professionals to optimize their resources on resolving the most critical issues.
Unique in its ability to scale across an organization's entire portfolio of applications, Ounce is used enterprise-wide by many of the world's most security-conscious organizations, including AT&T, EDS, IBM, Intel, Lockheed Martin, MFS, the U.S. Air Force, the U.S. Government Accountability Office, Unisys and VeriSign.
Led by senior executives with deep enterprise software and security expertise, Ounce Labs is headquartered in Waltham, Massachusetts, with regional offices throughout the U.S. For more information, please visit www.ouncelabs.com.
About the Author
Ryan Berg is a Co-Founder and Chief Scientist for Ounce Labs. Ryan holds patents and patents pending in multi-language security assessment, intermediary security assessment language, communication protocols, and security management systems.
