Perth Australia

Perth Australia

Upcoming OWASP Meeting
A special joint event between Perth's AISA chapter and the OWASP Perth chapter.

Threat Modelling in the Software Development Lifecycle
One of the most important concepts being promoted in the security industry is security in the software development lifecycle. This concept is important due to two primary factors: By walking through a case study I hope to demonstrate the effectiveness of addressing risk during the earlier stage of the software development lifecycle, and that these activities are not solely the responsibility of the "security guy", but all participants in a software project including the project manager, business stakeholders and software designer.
 * It is generally recognised that by shifting security activities closer towards the requirements gathering stage, or the design stage, that less vulnerabilities will make their way into the production systems.
 * It is also recognised that the cost of mitigating vulnerabilities increases later in the lifecycle.

About the presenter
Christian Frichot is currently employed by Bankwest working within the Security Consulting Services team. His core responsibilities include phishing and online fraud response, security assessments, information risk assessments and other ad-hoc information security consulting. Christian hopes to spend more time in '09 focusing on education and application security, where he feels more effort needs to be applied.

Date: Tuesday, 10 February 2009 Location: The Ernst & Young Building, 11 Mounts Bay Rd Time: 5:15pm RSVP: by 05 February 2009 to [mailto:perth@aisa.org.au perth@aisa.org.au]

-Updated 23/01/09 by [mailto:xntrik@gmail.com Christian Frichot]