At Ounce, we want to share our knowledge to help you take action, improve your application security posture and leverage source code analysis for your organization. en-us Copyright 2010, Ounce Labs, Inc. http://www.ouncelabs.com/resources/ Jack Danahy, co-founder and CTO of Ounce Labs, presents the keynote presentation for BrightTalk's Application Security Summit, focusing on the broader applicability of PCI when designing an organizational security standard. Thu, 16 Apr 2009 09:00:00 EDT http://www.ouncelabs.com/resources/331-webcast_the_role_of_pci_in_a_security_strategy Jack Danahy, founder and CTO of Ounce Labs and Bob Bragdon, publisher of CSO, discuss the risks inherent in outsourcing application development. Sat, 21 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/225-podcast_what_why_and_how_of_application_security-risks_in_outsourcing Jack Danahy, founder and CTO of Ounce Labs, and Bob Bragdon, publisher of CSO Magazine, discuss the critical nature of safeguarding assets and protecting information across every application. Wed, 18 Feb 2009 09:00:00 EST http://www.ouncelabs.com/resources/223-podcast_what_why_and_how_of_application_security Jack Danahy, co-founder and CTO of Ounce Labs, talks to BankInfoSecurity from the RSA show floor, discussing industry trends, the role of compliance in security spending, and specifically the role that source code analysis can take with an organization seeking to solve their application security problems. Tue, 28 Apr 2009 09:00:00 EDT http://www.ouncelabs.com/resources/333-podcast_defining_security_for_financial_services_and_federal_organizations Jack Danahy, founder and CTO of Ounce Labs, speaks with Jan Stafford, Executive Editor of SearchSoftwareQuality.com, about practical ways to avoid risks in outsourced development projects. Thu, 2 Apr 2009 09:00:00 EDT http://www.ouncelabs.com/resources/326-podcast_software_security_removing_insecurity_from_outsourced_development Jack Danahy's blog, discussing the need for a "balanced middle road" approach to security. Mon, 23 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/253-blog_suitable_security Quocirca Principal Analyst Fran Howarth describes trends and best practices as it pertains to outsourcing the creation of applications. Mon, 5 Jan 2009 09:00:00 EST http://www.ouncelabs.com/resources/140-winning_outsourcing_strategies_how_to_increase_value_and_reduce_risk Jack Danahy, Founder and CTO of Ounce Labs, disucsses strategies for addressing application security concerns when outsourcing software development. Mon, 15 Dec 2008 09:00:00 EST http://www.ouncelabs.com/resources/231-podcast_ensuring_data_privacy_when_outsourcing_software The Collision of Application Vulnerabilities and Data Privacy Sun, 23 Mar 2008 09:00:00 EDT http://www.ouncelabs.com/resources/257-weathering_a_perfect_storm The need for secure software for healthcare organizations Fri, 20 Jul 2007 09:00:00 EDT http://www.ouncelabs.com/resources/137-taking_care_the_need_for_secure_software_for_healthcare_organizations A study of CEOs and other C-level Executives sponsored by IBM and conducted independently by Ponemon Institute LLC. Mon, 1 Mar 2010 09:00:00 EST http://www.ouncelabs.com/resources/376-business_case_for_data_protection-uk_survey_research_analysis More and more organizations are implementing security at the application level but, it’s one thing to build in security; it’s another to make sure it’s effective. Wed, 21 Oct 2009 09:00:00 EDT http://www.ouncelabs.com/resources/361-on-demand_webcast_is_your_security_effective A study of CEOs and other C-level Executives sponsored by Ounce Labs and conducted independently by Ponemon Institute LLC. Thu, 9 Jul 2009 09:00:00 EDT http://www.ouncelabs.com/resources/352-business_case_for_data_protection-us_survey_research_analysis Jack Danahy, founder of Ounce Labs and Bob Bragdon, publisher of CSO, discuss the disconnect between compliance and security, and what you can do to keep ahead of the curve. Wed, 25 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/288-podcast_what_why_and_how_of_application_security_keeping_up_with_evolving_compliance_guidelines A Source Code Security Review Checklist Mon, 23 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/112-the_path_to_a_secure_application Frequently Asked Questions about application security vulnerabilities Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/151-faq_application_security_vulnerabilities Frequently Asked Questions about vulnerabilities discovered by source code analysis Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/153-faq_code_analysis_vulnerabilities Frequently Asked Questions about the role Ounce 6 plays in a security strategy Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/150-faq_general Technical Frequently Asked Questions about the Ounce Application Security Product Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/148-faq_ounce_labs_technical_faq Frequently Asked Questions about security source code reviews Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/157-faq_security_code_review An Application Security Tools Report Card Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/123-the_right_tool_for_the_right_job How to Manage Risk in Outsourced Applications Fri, 20 Mar 2009 09:00:00 EDT http://www.ouncelabs.com/resources/122-trust_but_verify A discussion of the PCI Data Security Standard and its focus on the importance of securing applications. Fri, 21 Mar 2008 09:00:00 EDT http://www.ouncelabs.com/resources/196-meeting_the_pci_application_security_requirements_building_compliance_in Know where your software is vulnerable: The Ounce Compliance Guide Fri, 16 Mar 2007 09:00:00 EDT http://www.ouncelabs.com/resources/131-application_security_compliance_guide_for_federal_agencies Know where your software is vulnerable: The Ounce Compliance Guide Fri, 16 Mar 2007 09:00:00 EDT http://www.ouncelabs.com/resources/129-application_security_compliance_guide_for_financial_services_organizations