Personal Information
Organization / Workplace
London, U.K. United Kingdom
Occupation
SVP Technology Risks & Controls
Website
securesoftware.blogspot.com/
About
Experience in managing application security risks by aligning business goals with security objectives, technical advisor for the adoption of preventive and detective measures that mitigate the risks of cyber threats against mission critical web application assets. Extensive technical knowledge and experience in audit/compliance, governance, security engineering and vulnerability/risk management. Experience in managing application security programs and engineering teams worldwide. Overall, more than 16 years of professional experience in application security (6 years of it in the financial sector) in diverse management and technical roles. Volunteer and contributor to the cause of applica...
Tags
owasp
security
threats
countermeasures
malware
threat modeling
top
applications
web
sicurezza
software
application
software security
rosi
secure
10
vulnerabilities
analysis
sdlc
threat
modeling
risk
#infosec #recruiting #talent #cybersecurity #ciso
mobile payments; online fraud; payment fraud; frau
threat modeling; cyberthreat analysis; threat inte
privacy
design patterns
service-oriented architecture
authentication
risk assessment
financial
application threat modeling
threat analysis
ajax security
web 20 security
application security
owasp top 10
use and abuse cases
business logic attacks
wasc
sans-25
maturity models
cmm
business cases
cybercrime
risk management
pci compliance
security testing
pen testing source code analysis
owasp top ten
web services security
architecture
ten
flaws
clasp
csrf
xsrf
session
touchpoints
strategy
code
foss
cots
riding
cross
site
request
forgery
programs
reviews
source
analyzers
attack
trees
stride
dread
management
bugs
See more
Presentations
(28)Personal Information
Organization / Workplace
London, U.K. United Kingdom
Occupation
SVP Technology Risks & Controls
Website
securesoftware.blogspot.com/
About
Experience in managing application security risks by aligning business goals with security objectives, technical advisor for the adoption of preventive and detective measures that mitigate the risks of cyber threats against mission critical web application assets. Extensive technical knowledge and experience in audit/compliance, governance, security engineering and vulnerability/risk management. Experience in managing application security programs and engineering teams worldwide. Overall, more than 16 years of professional experience in application security (6 years of it in the financial sector) in diverse management and technical roles. Volunteer and contributor to the cause of applica...
Tags
owasp
security
threats
countermeasures
malware
threat modeling
top
applications
web
sicurezza
software
application
software security
rosi
secure
10
vulnerabilities
analysis
sdlc
threat
modeling
risk
#infosec #recruiting #talent #cybersecurity #ciso
mobile payments; online fraud; payment fraud; frau
threat modeling; cyberthreat analysis; threat inte
privacy
design patterns
service-oriented architecture
authentication
risk assessment
financial
application threat modeling
threat analysis
ajax security
web 20 security
application security
owasp top 10
use and abuse cases
business logic attacks
wasc
sans-25
maturity models
cmm
business cases
cybercrime
risk management
pci compliance
security testing
pen testing source code analysis
owasp top ten
web services security
architecture
ten
flaws
clasp
csrf
xsrf
session
touchpoints
strategy
code
foss
cots
riding
cross
site
request
forgery
programs
reviews
source
analyzers
attack
trees
stride
dread
management
bugs
See more