Integration of risk assessment and vulnerability discovery into software development process

Session: Secure software development, Wed., Sep. 16, 13:00 - 13:30

Secure software development requires a more complete understanding of whole security risk picture the by developers and thus a tight integration with risk assessment and risk management. This talk outlines how secure software development is done at Software AG. It shows how we run the risk analysis and what we get out of it, how we analyze the third party library vulnerabilities and integrate continuous scanning for vulnerabilities.

About Heiko Weber

Heiko Weber has been working in various security development areas at Software AG for the last 15 years. Currently he is part of the Development Security Team, that is focusing on establishing and maintaining secure software development processes across all products of Software AG.