[Owasp-board] FW: Information Risk Executive Council - Application Security Teleconference
dave.wichers at owasp.org
Tue Dec 23 14:24:40 UTC 2008
Jeff, as chair, would probably be the best representative of OWASP for this, but unfortunately he is at a client site that day. Therefore, I’m happy to volunteer. Can you let them know.
From: "Kate Hartmann" <kate.hartmann at owasp.org>
Date: December 22, 2008 8:58:04 AM EST
To: "'OWASP Foundation Board List'" <owasp-board at lists.owasp.org>
Subject: [Owasp-board] FW: Information Risk Executive Council - Application Security Teleconference
I received this request for a telephone speaking event. Would anyone be available to participate? It is not until January.
OWASP Operations Director
9175 Guilford Road
Columbia, MD 21046
kate.hartmann at owasp.org
From: Kim, Sung [mailto:skim at executiveboard.com]
Sent: Friday, December 19, 2008 1:19 PM
To: kate.hartmann at owasp.org
Subject: Information Risk Executive Council - Application Security Teleconference
By way of introduction, my name is Sonny Kim, a research analyst at the Information Risk Executive Council (http://irec.executiveboard.com ). Our organization provides executive education and best-practice research to Chief Information Security Officers (CISO) at Fortune 500 companies.
As part of our ongoing research on approaches to securing software development we have followed with great interest the developments at OWASP. Further, in our conversations with our members, they have cited your methodology and research as part of their application security programs. Given these considerations, we would like to invite a speaker from your group to join us as a guest panelist in a teleconference we are preparing for Tuesday, January 13, 2009 at 11:00 am EST.
In particular, we are focused on providing high-level strategic guidance on how to embed security into the SDLC – from a roles, activities, and process standpoint. We have found that while application developers generally are very compliant with general security policies, they often suffer from limited awareness of good coding practices. What we propose to discuss is methods to heighten the priority of secure coding among this constituency.
Just to provide some logistics, our plan is for us to introduce the topic, share research findings and provide a roadmap for discussion throughout the call. We would then turn over to a speaker from OWASP for a 15-20 minute presentation (including some time for Q&A). We typically host 200+ participants on the line and have found that previous guest panelists have enjoyed the moderated discussion and insight into the challenges faced by a diverse audience – across various industries and countries.
Please let me know if a speaker from your organization is available to join us, or if you have questions about our program or this teleconference. You can contact me by replying to this email or by phone at 1-571-303-4931. I look forward to speaking with you soon.
Thank you for your time and consideration.
Corporate Executive Board | Information Risk Executive Council
1919 North Lynn Street | Arlington, VA 22209
phone: (571)303-6503 | fax: (571)303-3100
<mailto:skim at executiveboard.com> skim at executiveboard.com | <http://irec.executiveboard.com/> http://irec.executiveboard.com
This email and/or its attachments are confidential and are intended only for the use of the addressee(s). If you have received this in error, please notify the sender and immediately destroy all copies of the communication.
Owasp-board mailing list
Owasp-board at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-board