IN
THIS ISSUE:
 SPOTLIGHT
ARTICLES
 News
Analysis: SANS Top 20 Shows Hackers Shifting
Toward
Applications
Data
Security Breaches: What Can You Do to Reduce
Your
Exposure? Expert Perspective from leading law firm
Goodwin
Procter LLP
Software
Security Assurance: The People, Processes
and
Technologies Required to Manage Enterprise Software
Risk
Q&A
With Jack Danahy, founder and Chief Technology
Officer,
Ounce Labs
IN
THE NEWS
Source-Code Assessment Tools Kill Bugs Dead, Secure Enterprise Magazine
OUNCE
POLL
UPCOMING
EVENTS
SPOTLIGHT
ARTICLES
News
Analysis: SANS Top 20 Shows Hackers Shifting Toward Applications
"The bottom line is that security has been set back
nearly six years in the past 18 months," SANS Institute
Research Director Allan Paller said in a recent email announcing
the SANS Institute’s 2005 Top 20 Most Critical Internet
Vulnerabilities report. Find out why.
Click
here for full article
|
Data
Security Breaches: What Can You Do to Reduce Your Exposure?
Goodwin Procter LLP, one of the nation’s leading law
firms, provides specific guidance for preparing your organization
to safeguard data in response to recent actions by the Federal
Trade Commission. Poor application security, including the
lack of cryptography and improper storage of data, has been
at the heart of many recent incidents, and should be an integral
part of any data security program.
Click
here for full article
|
Software
Security Assurance: The People, Processes and Technologies
Required to Manage Enterprise Software Risk
Addressing software security in a consistent, effective, and
measurable way requires the right combination of people, process,
and technologies. This article outlines the vital elements of
a structured approach to software security assurance.
Click
here for full article
|
  Read
a brief Q&A Jack Danahy, founder and Chief Technology
Officer of Ounce Labs, sat down recently for a brief conversation
with SSA Update about software risk, new technologies, and the
changing nature of threats to data and privacy. |
IN
THE NEWS
Review: Source-Code Assessment Tools Kill Bugs Dead
Secure Enterprise Magazine writer Jeff Forristal presents
a detailed look at the source code assessment tool market and
the drivers that are placing these tools high on the shopping
lists of security buyers in 2006. |
|
Which software risk factor is your number one concern? [select
one]
OUNCE ANNOUNCES
UPCOMING EVENTS
|
February 6-8, 2006
Software Security Summit
San Diego, CA
Gold Sponsor
|
|
|
February 13-17,
2006
RSA
McEnery Convention Center
San Jose, CA
Booth #215
|
|
|
