IN
THIS ISSUE:
 SPOTLIGHT
ARTICLES
 Models
for Implementing Security Testing During
Software
Development
Establishing
Controls for Software Security Assurance
Building
Security In: An Ounce 4.0 Product Overview
Gartner
IT Security Summit '06 Review: Focus on
Application
Security
Q&A
With Dr. Herbert H. Thompson, Chief
Security
Strategist of Security Innovation
IN
THE NEWS
Ounce
Labs reaches out to developers with
new analysis tool, searchappsecurity.com
Targeting
security issues during development
ADT
Magazine
Ounce’s
Code Scanning Prevents Vulnerabilities,
Foils
Attacks CRN
OUNCE
POLL
UPCOMING
EVENTS
SPOTLIGHT
ARTICLES
Models
for Implementing Security Testing During Software Development
As organizations drive towards integrating security into the
development lifecycle, there are a number of possible organizational
and process models. Which is the best for your implementation?
Click here for expert insight on the various approaches and their
pros and cons.
Click
here for full article
|
Establishing
Controls for Software Security Assurance
Leading IT Auditor Charles LeGrand recently authored an article
for the Institute of Internal Auditor’s ITAudit online
journal. Read his advice on how companies and auditors can
identify and implement the most effective software security
controls and assurance.
Click
here for full article
|
Building
Security In: An Ounce 4.0 Product Overview
Read about the latest product release from Ounce Labs, featuring
seamless integration of the industry’s leading source
code vulnerability analysis into the software development lifecycle.
Including a Developer Plug-in offered free of charge, Ounce
allows maximum security impact as early as possible in the
software lifecycle.
Click
here for full article
|
Gartner
IT Security Summit ’06 Review: Focus on Application
Security
Application security was front and center at the annual Gartner
Security Summit in June. Read this report on a key session
on building secure applications by two of Gartner’s leading
analysts. The summary also includes a link to a webcast of
this important presentation.
Click
here for full article
|
  Read
a brief Q&A Dr. Herbert H. Thompson, Chief Security
Strategist of Security Innovation, sat down recently for a
brief conversation with SSA Update about today’s greatest
obstacles and opportunities in application security, and some
expert recommendations for implementing an effective software
security program. |
IN
THE NEWS
Ounce
Labs reaches out to developers with new analysis tool
searchappsecurity.com
Searchappsecurity’s Colleen Frye outlines the significance
of Ounce Labs’ June announcement of the company’s
latest release, Ounce 4.0.
|
Targeting
security issues during development
ADT Magazine
This article by Jason Turcotte, writing
for a leading development-focused magazine,
features Ounce customer Brent Huston, security evangelist and CEO of MicroSolved,
speaking about his experience switching from competing software to Ounce Labs
and his perspective on the company’s latest product announcement.
|
Ounce’s
Code Scanning Prevents Vulnerabilities, Foils Attacks,
CRN
Paula Rooney of CRN spoke with Ounce partners Unisys and immixGroup about the
importance of source code analysis in application security, and the effectiveness
of the Ounce solution in their work. |
|
• What group in your organization is responsible for
conducting security code reviews? [select one]
OUNCE ANNOUNCES
UPCOMING EVENTS
|
|
