Back To Schedule
Thursday, November 8 • 3:00pm - 3:50pm
PRO TALK: Navigating the Maze of Application Security Standards

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
There is a plethora of application security standards today. If we only pay attention to the major ones, this includes the OWASP Top 10, the CWE Top 25, DISA-STIG, and the CERT secure coding standard. There is also a cybersecurity addendum to MISRA, as well as a newly-introduced UL-2900 for IoT cybersecurity. Some of these secure coding standards are general purpose, some are language specific, and others are designed for a particular industry or type of application. Join Arthur Hicken as he shares his insight on how to get value from the most common application security coding standards. He’ll cover what each of the standards are, what their purpose is, and lay out an effective overall approach to using AppSec standards with static analysis in a way that will lead to success rather than frustration. Learn which standards apply to you, which will work best for your application, and how to effectively integrate static code analysis into your SDLC without affecting productivity.

avatar for Arthur Hicken

Arthur Hicken

Evangelist, Parasoft
Arthur Hicken has been involved in automating various practices at Parasoft for over 20 years. He has worked on various projects involving the software development lifecycle, software security, complex web applications, and integration with legacy systems. Arthur has helped IT departments... Read More →

Thursday November 8, 2018 3:00pm - 3:50pm CST
Workshop Stage 1