Milton Smith 2016 Bio & Why Me?

About Milton:

Milton Smith (California) is an application security security principle at Oracle. Milton works strategically to improve application security across Oracle's cloud infrastructure. Previously, Milton lead security for the Java platform and platform products. Milton is a leader on the OWASP Security Logging Project, contributed to the Application Security Guide for CISOs, and currently collaborating with ZAP application scanner team to integrate DeepViolet for SSL/TLS scanning. Milton has presented as well as helped organize conferences like Blackhat, Devoxx, JavaOne, and AppSec USA/EU. Prior to Oracle, Milton lead security for Yahoo's User Data Analytics property. For more information visit, securitycurmudgeon.com or follow Milton on Twitter(@spoofzu).

Why I would like to be elected to the Global OWASP Foundation Board of Directors

Many organizations throughout industry struggle with security. In fact, hardly a day passes without news of serious exploitation. Many outside our industry feel security is hopeless no matter how much investment is applied. As application security professionals we know this is not true. Security can be so much better than it is today! We don’t fail because we fall short on ideas for positive improvement. We fall short on resources and implementation. Many industries don’t invest in application security to a level commensurate with their risk and exposure. The auto industry does not get to decide if cars will include seat belts or air bags. Business owners don’t get to decide if buildings will include fire alarms and sprinkler systems. We don’t leave these decisions to organization executives. Application security must be treated similarly. It’s my strong desire to influence industry in ways encouraging more positive security outcomes for organizations and security practitioners.