Live, interactive cybersecurity training available through SANS Live Online. View upcoming events.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Innovative Application Security Testing Techniques for Modern Software Development

  • Thursday, March 12, 2020 at 1:00 PM EST (2020-03-12 17:00:00 UTC)
  • Chris Kirsch

Sponsor

  • Veracode

You can now attend the webcast using your mobile device!

  

Overview

When assessing the various types of application security technologies, it is important to remember that there is no silver bullet. You need to gather the strengths of multiple analysis techniques along the entire application development cycle from development to testing to production to drive down application risk. Each testing type, from static to dynamic to software composition analysis and manual pen testing, has different strengths and weaknesses and are better in different scenarios, but you wont be effective without taking advantage of them all. In addition, as industry adoption of DevSecOps practices continues to accelerate, organizations must consider how these testing techniques work in concert with this shift. Join Chris Kirsch, product leader at Veracode who will outline the various approaches to security testing and the latest innovations on the market from real-time development feedback to pipeline and policy scanning - that can support modern software development.

Speaker Bio

Chris Kirsch

Chris Kirsch works on the products team at Veracode and has over 20 years of experience in security, particularly in the areas of application security testing, security assessments, incident response, and cryptography. Previously, he managed Metasploit and incident response solutions at Rapid7 and held similar positions at Thales e-Security and PGP Corporation. He is the winner of the Social Engineering CTF Black Badge competition at DEF CON 25.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.