Personal Information
Organization / Workplace
London, U.K. United Kingdom
Occupation
SVP Technology Risks & Controls
Website
securesoftware.blogspot.com/
About
Experience in managing application security risks by aligning business goals with security objectives, technical advisor for the adoption of preventive and detective measures that mitigate the risks of cyber threats against mission critical web application assets. Extensive technical knowledge and experience in audit/compliance, governance, security engineering and vulnerability/risk management. Experience in managing application security programs and engineering teams worldwide. Overall, more than 16 years of professional experience in application security (6 years of it in the financial sector) in diverse management and technical roles. Volunteer and contributor to the cause of applica...
Tags
owasp
security
threats
countermeasures
threat modeling
top
applications
web
sicurezza
malware
software
application
analysis
vulnerabilities
sdlc
threat
modeling
10
secure
rosi
risk
software security
web 20 security
riding
cross
site
request
forgery
ajax security
programs
threat analysis
reviews
source
analyzers
application threat modeling
financial
risk assessment
authentication
service-oriented architecture
design patterns
attack
privacy
trees
stride
dread
management
threat modeling; cyberthreat analysis; threat inte
mobile payments; online fraud; payment fraud; frau
bugs
#infosec #recruiting #talent #cybersecurity #ciso
cmm
business cases
cybercrime
risk management
pci compliance
maturity models
security testing
pen testing source code analysis
owasp top ten
web services security
architecture
ten
flaws
sans-25
clasp
csrf
wasc
xsrf
session
touchpoints
strategy
code
business logic attacks
use and abuse cases
foss
cots
owasp top 10
application security
See more
Presentations
(28)Personal Information
Organization / Workplace
London, U.K. United Kingdom
Occupation
SVP Technology Risks & Controls
Website
securesoftware.blogspot.com/
About
Experience in managing application security risks by aligning business goals with security objectives, technical advisor for the adoption of preventive and detective measures that mitigate the risks of cyber threats against mission critical web application assets. Extensive technical knowledge and experience in audit/compliance, governance, security engineering and vulnerability/risk management. Experience in managing application security programs and engineering teams worldwide. Overall, more than 16 years of professional experience in application security (6 years of it in the financial sector) in diverse management and technical roles. Volunteer and contributor to the cause of applica...
Tags
owasp
security
threats
countermeasures
threat modeling
top
applications
web
sicurezza
malware
software
application
analysis
vulnerabilities
sdlc
threat
modeling
10
secure
rosi
risk
software security
web 20 security
riding
cross
site
request
forgery
ajax security
programs
threat analysis
reviews
source
analyzers
application threat modeling
financial
risk assessment
authentication
service-oriented architecture
design patterns
attack
privacy
trees
stride
dread
management
threat modeling; cyberthreat analysis; threat inte
mobile payments; online fraud; payment fraud; frau
bugs
#infosec #recruiting #talent #cybersecurity #ciso
cmm
business cases
cybercrime
risk management
pci compliance
maturity models
security testing
pen testing source code analysis
owasp top ten
web services security
architecture
ten
flaws
sans-25
clasp
csrf
wasc
xsrf
session
touchpoints
strategy
code
business logic attacks
use and abuse cases
foss
cots
owasp top 10
application security
See more