<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 12 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
        {font-family:Tahoma;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0in;
        margin-bottom:.0001pt;
        font-size:12.0pt;
        font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
        {mso-style-priority:99;
        mso-style-link:"Balloon Text Char";
        margin:0in;
        margin-bottom:.0001pt;
        font-size:8.0pt;
        font-family:"Tahoma","sans-serif";}
span.EmailStyle17
        {mso-style-type:personal-reply;
        font-family:"Calibri","sans-serif";
        color:#1F497D;}
span.BalloonTextChar
        {mso-style-name:"Balloon Text Char";
        mso-style-priority:99;
        mso-style-link:"Balloon Text";
        font-family:"Tahoma","sans-serif";}
.MsoChpDefault
        {mso-style-type:export-only;}
@page WordSection1
        {size:8.5in 11.0in;
        margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
        {page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="2050" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Stackoverflow.com is one online place where developers congregate. Sometimes questions of quality also have security considerations. Providing both perspectives can help.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p>&nbsp;</o:p></span></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>James McGovern<br></span></b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>Insurance SBU <o:p></o:p></span></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>Virtusa </span></b><b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F'>Corporation</span></b><b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'><o:p></o:p></span></b></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>100 Northfield Drive, Suite 305 | Windsor, CT | 06095<o:p></o:p></span></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F'>Phone:&nbsp; </span></b><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>860 688 9900</span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F'> <b>Ext:&nbsp; </b></span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>1037</span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F'> | <b>Facsimile:&nbsp; </b></span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'>860 688 2890</span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F'> &nbsp;</span><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:gray'><o:p></o:p></span></p><p class=MsoNormal><a href="http://www.virtusa.com/"><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#7F7F7F;text-decoration:none'><img border=0 width=81 height=21 id="Picture_x0020_52" src="cid:image001.jpg@01CB9848.535A86A0" alt="cid:image011.jpg@01CB08A4.F95CFA30"></span></a><span style='font-size:10.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>&nbsp;</span><a href="http://www.virtusa.com/blog/"><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D;text-decoration:none'><img border=0 width=22 height=22 id="Picture_x0020_53" src="cid:image002.gif@01CB9848.535A86A0" alt="cid:image012.gif@01CB08A4.F95CFA30"></span></a><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><a href="https://twitter.com/VirtusaCorp" target="_blank"><span style='text-decoration:none'><img border=0 width=22 height=22 id="Picture_x0020_54" src="cid:image003.gif@01CB9848.535A86A0" alt="cid:image004.gif@01CB08A4.F95CFA30"></span></a><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>&nbsp;</span><a href="http://www.linkedin.com/companies/virtusa" target="_blank"><span style='text-decoration:none'><img border=0 width=22 height=22 id="Picture_x0020_55" src="cid:image004.gif@01CB9848.535A86A0" alt="cid:image005.gif@01CB08A4.F95CFA30"></span></a><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>&nbsp;</span><a href="http://www.facebook.com/VirtusaCorp" target="_blank"><span style='text-decoration:none'><img border=0 width=22 height=22 id="Picture_x0020_56" src="cid:image005.gif@01CB9848.535A86A0" alt="cid:image006.gif@01CB08A4.F95CFA30"></span></a><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p>&nbsp;</o:p></span></p><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> owasp-leaders-bounces@lists.owasp.org [mailto:owasp-leaders-bounces@lists.owasp.org] <b>On Behalf Of </b>Martin Knobloch<br><b>Sent:</b> Friday, December 10, 2010 5:01 AM<br><b>To:</b> owasp-leaders@lists.owasp.org<br><b>Subject:</b> Re: [Owasp-leaders] developers, Developers, DEVELOPERS!<o:p></o:p></span></p></div><p class=MsoNormal><o:p>&nbsp;</o:p></p><p class=MsoNormal>That's my point! I don't think that security is not sexy&nbsp;enough&nbsp;for developers. They just don't know.<o:p></o:p></p><div><p class=MsoNormal style='margin-bottom:12.0pt'>Therefore, I think (and that is what I put quite some time in) we &nbsp;should put some more effort in spreading the OWASP word in developer communities!<o:p></o:p></p><div><p class=MsoNormal>On Fri, Dec 10, 2010 at 10:38 AM, psiinon &lt;<a href="mailto:psiinon@gmail.com">psiinon@gmail.com</a>&gt; wrote:<o:p></o:p></p><p class=MsoNormal>I'm a bit surprised by the perceived lack of 'sexiness' in security -<br>my experiences differ from this.<br>My background is in software development - I've been developing java<br>webapps for 14 years now.<br>I talk to a lot of developers and functional testers, and they care<br>about the products they develop and they know security is important.<br>They just havnt had any training. And most security websites not<br>surprisingly deal with hacking or pen testing - these are somehow seen<br>as 'dangerous' and are often blocked by corporate firewalls.<br>So pen testing is 'forbidden knowledge', which _is_ sexy ;)<br>I argue that you cant develop secure apps without knowing how to attack them.<br>You dont have to be a qualified pen tester, but you need to know<br>something of what the bad guys will do.<br>To that end I teach basic pen testing techniques to developers and<br>functional testers - and that seems to go down very well!<br>This isnt an alternative to other training, static source code<br>analysis, professional pen testing etc etc<br>But I think it makes developers think about their apps in a different way.<br>Its why I released the Zed Attack Proxy - I wanted a pen test tool<br>that was simple enough for developers with little security experience<br>to use.<br>If they use it when coding then basic vulnerabilities might be picked<br>up much earlier then they would be otherwise.<o:p></o:p></p><div><div><p class=MsoNormal><br>Cheers,<br><br>Simon<br>_______________________________________________<br>OWASP-Leaders mailing list<br><a href="mailto:OWASP-Leaders@lists.owasp.org">OWASP-Leaders@lists.owasp.org</a><br><a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a><o:p></o:p></p></div></div></div><p class=MsoNormal><o:p>&nbsp;</o:p></p></div></div></body></html>
<table><tr><td bgcolor=#ffffff><font color=#000000><pre>Virtusa was recently ranked and featured in 2010 Deloitte Technology Fast 500, 2010 Global Services 100, IAOP's 2010 Global Outsourcing 100 sub-list and 2010 FinTech 100 among others.

---------------------------------------------------------------------------------------------

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

---------------------------------------------------------------------------------------------</pre></font></td></tr></table>