Adam Muntner is speaking on the topic of Application Security at the SecureSD conference in San Diego, California. SecureSD is presented by (ISC)² and the San Diego chapter of ISSA. It is part of the (ISC)2 Security Leadership Seminar series.
This event will be held on Nov. 2nd in San Diego.

For more information, visit:

https://www.isc2.org/events/sandiego.html

Abstract:
Schrodinger’s Hack - Removing Uncertainty from Application Security
Recognizing the competitive advantage of speed to market, organizations are under pressure to develop and deploy applications as rapidly as possible. According to Gartner Group, 75% of attacks are now focused against the application layer. The combination of rapid development deadlines with the most targeted attack vector often leads to insufficient security analysis, testing, and validation through the entire software development lifecycle. The results are predictable - regulatory compliance headaches, erosion of customer confidence, and ultimately financial loss.

By learning the tools and techniques used by crackers to penetrate applications, participants will learn how to write code resistant against these techniques. Examples covered include SQL injection, LDAP injection, cross site scripting, parameter manipulation, Google hacking, and web services hacking.

About the Speaker:
Mr. Muntner is a Partner of QuietMove, Inc., an information security consultancy specializing in enterprise risk assessment. He has over a decade of combined information technology experience in information security, application development, systems architecture, and security operations management. Before founding QuietMove, Mr. Muntner had managed and performed over 100 risk assessments for government agencies, health care systems, public utilities, and private enterprise. Previously, he was an IBM Penetration Testing Subject Matter Expert and founding member of IBM’s Ethical Hacking Center of Competency. Later, Mr. Muntner was the Information Security Officer for a publicly traded company with offices in 12 countries. Mr. Muntner has been evangelizing web application security since 1998 and speaks regularly at Information Security conferences and for private audiences.

About (ISC)²
The International Information Systems Security Certification Consortium, or (ISC)²®, is the internationally recognized Gold Standard for educating and certifying information security professionals throughout their careers. (ISC)²® has certified over 42,000 information security professionals in more than 110 countries.

Founded in 1989 by industry leaders, (ISC)² issues the Certified Information Systems Security Professional (CISSP®) and related concentrations: Information Systems Security Architecture Professional (ISSAP®), Information Systems Security Management Professional (ISSMP®) and Information Systems Security Engineering Professional (ISSEP®); the Certification and Accreditation Professional (CAP CM); and the Systems Security Certified Practitioner (SSCP®) credentials to those meeting the necessary competency requirements. Several of (ISC)²’s credentials meet the stringent requirements of ANSI/ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel.

(ISC)² also offers a portfolio of education products and services based upon (ISC)²’s CBK®, a compendium of industry best practices for information security professionals, and is responsible for the annual (ISC)² Global Information Security Workforce Study.

QuietMove is an experienced provider of Web Application Security Testing, Risk Assessment, and Education.