OUNCE LABS CHIEF SCIENTIST TO PRESENT "MODELS FOR IMPLEMENTING SECURITY TESTING DURING SOFTWARE DEVELOPMENT" AT SANSFIRE 2007

WASHINGTON, DC-- (MARKET WIRE) -- July 10, 2007 -- SANSFIRE 2007

What: Ryan Berg, Chief Scientist for Ounce Labs, the industry leader in software risk analysis, will be delivering a presentation on "Models for Implementing Security Testing During Software Development" at SANSFIRE 2007.

Session Overview
What is the best model for developing secure software in your organization? This session discusses practical models for using source code analysis within the software development lifecycle to enhance application security, including role-based models that are appropriate for developers, QA staff, IT managers and security teams, explaining the specific requirements for each approach as well as expected outcomes.

Where
The conference is being held in Washington, DC from July 25th to August 3rd, 2007 at the Wardman Park Marriott Hotel.

When
Mr. Berg will present on Thursday, July 26th from 12:30 p.m. - 1:15 p.m.

Speaker
Ryan Berg is a Co-Founder of Ounce Labs. In addition to advancing the state of the art in application security technologies, Ryan is also a popular speaker, instructor, and author in the fields of security, risk management, and secure development processes. He holds patents and has patents pending in multi-language security assessment, kernel-level security, intermediary security assessment language, and secure remote communication protocols.

About SANSFIRE 2007
SANSFIRE 2007 features a full lineup of SysAdmin, Audit, Network, and Security (SANS) classics in the disciplines of audit, security, management and legal as well as a series of classes presented by partners including government initiatives on DIACAP and Secure Coding in C + C++. In addition to training, this event is the place to meet other information security professionals, to discuss new products with vendors, to participate in online challenges, and listen to world-class guest speakers.

About Ounce Labs, Inc.
Ounce Labs' solutions enable organizations to identify, prioritize and eliminate business risk to the enterprise caused by software security vulnerabilities. With Ounce Labs, organizations strengthen application security, protect confidential information and verify compliance with both internal policies and industry mandates such as PCI, FISMA, HIPAA and others.

Ounce Labs' software analyzes application source code to provide the most complete and accurate analysis of application vulnerabilities and their relative priorities, enabling business users and IT professionals to optimize their resources on resolving the most critical issues.

Unique in its ability to scale across an organization's entire portfolio of applications, Ounce is used enterprise-wide by many of the world's most security-conscious organizations, including AT&T, EDS, IBM, Intel, Lockheed Martin, MFS, the U.S. Air Force, the U.S. Government Accountability Office, Unisys and VeriSign.

Led by senior executives with deep enterprise software and security expertise, Ounce Labs is headquartered in Waltham, Massachusetts, with regional offices throughout the U.S. For more information, please visit www.ouncelabs.com.

Ounce Labs is a registered trademark of Ounce Labs, Inc. in the United States and other countries. Ounce 5, SmartTrace and SmartAudit are trademarks of Ounce Labs. Other product or service names mentioned herein are the trademarks of their respective owners.

###

Media Contacts:

Jake Messier
Ounce Labs
781.547.7031
Email Contact
http://www.ouncelabs.com

Robert Craig
Davies Murphy Group
+1.781.418.2414
Email Contact
http://www.daviesmurphy.com