Secure Software is Getting High Level Attention

On May 15th and 16th in Washington, D.C. hundreds of secure software practitioners gathered for the first Security Development Conference organized by Microsoft. What made this conference unique was not so much the focus on secure software practices as it was the quality of the speakers and of the attendees.

The speaker line-up included high-profile personalities such as Richard Clarke, former special advisor to the President for Cyber Security. Also in attendance were Scott Charney, the Corporate Vice President for Trustworthy Computing at Microsoft and General Michael Hayden, Former Director of the NSA and of the CIA. Throughout the conference other talented practitioners from Adobe, Cisco, EMC, Microsoft, NIST, NSA, to name just a few also hosted sessions; each was eager to share their experiences.

Reeny Sondhi and Izar Tarandach (center seat on the picture) represented EMC in the speaker line-up and discussed respectively SDL Management and threat modeling.  EMC was also a sponsor at this event and had experts on hand to talk about Product Security.

Such a showcase of the latest practices in software security is further demonstration of the progress the industry has made in this field in recent years.  We are looking forward to supporting the Security Development Conference in the future.

About the Author: Eric Baize

Throughout his career, Eric Baize has been passionate about building security and privacy into systems and technology from design to deployment. He currently leads Dell EMC’s Product Security Office and serves as Chairman of SAFECode, an industry-led non-profit organization dedicated to advancing software and supply chain security best practices. At Dell EMC, Eric leads the team that sets the standards and practices for all aspects of product security for the product portfolio: Vulnerability response, secure development, consistent security architecture, and code integrity. Eric joined Dell through its combination with EMC where he built EMC’s highly successful product security program from the ground up and was a founding member of the leadership team that drove EMC’s acquisition of RSA Security in 2006. He later led RSA’s strategy for cloud and virtualization. Prior to joining EMC in 2002, Eric held various positions for Groupe Bull in Europe and in the US. Eric has been a member of the SAFECode Board of Directors since the organization was founded in 2007 and also serves on the BSIMM Board of Advisors. He holds multiple U.S. patents, has authored international security standards, is a regular speaker at industry conferences and has been quoted in leading print and online news media. Eric holds a Masters of Engineering degree in Computer Science from Ecole Nationale Supérieure des Télécommunications de Bretagne, France and is a Certified Information Security Manager. Follow Eric Baize on Twitter: @ericbaize