Infosec In the City (IIC)
Building a Better SDLC Using Threat Modelling — by Stephen Kapp
#IICSG2018 Conference Workshop Track
Day 1 (24 May 2018)
@ Bras Basah Room
[#IICSG2018 Conference Full Schedule]
Taking existing SDLC and building into it a threat-based approach to ensuring the initial design and build account for today's threat landscape. Enhancing existing projects and systems management to use threat modelling to add context to vulnerability management in new and existing systems and applications to produce tailored prioritisation and protection for an individual entity.
About Stephen Kapp
With over 20 years of experience in all areas of information security, Stephen Kapp heads the technology operations at Cortex Insight. He has previously worked with Veracode, Betfair, NCC, PricewaterhouseCoopers, Symantec, and @stake. Stephen brings expertise from architecturing and building solutions for various industry verticals including financial services, aerospace, and entertainment using many different technologies including Enterprise Java, .NET, Ruby on Rails, Oracle and C/C++.