Ken is responsible for defining the technical vision and future growth of the Code Dx product suite. He has a passion for helping organizations through the process of building secure applications. He has published several articles on cybersecurity in peer-reviewed journals and is active in the application security community, attending and presenting at OWASP and DHS SwA Working Groups / Forums. Ken has contributed to freely available application security tools: CWEVis.org, a community resource to visually explore and search the Common Weakness Enumeration; and OWASP Code Pulse, a real-time code coverage tool for penetration testing activities. He has also formulated Code Dx’s hybrid analysis strategy for incorporating and correlating the results of multiple static and dynamic application security testing tools. Ken is an (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP) and Microsoft Certified Application Developer (MCAD).
With 20 years of software development experience, he understands first-hand the issues that developers have in incorporating security testing into their builds and collaborating with security analysts and testers who are evaluating code for security vulnerabilities. Within his role as CTO, Ken directs the Code Dx development team and provides specialized assistance to our support team.