AppSec Strategy with a hint of Security Champions
January 31 @ 6:30 pm - 8:30 pm
Building an Application Security program takes a consistent, defense in depth strategy. Building a strong base that integrates into the SDLC is imperative to change the security culture. The presentation will walk through several tools or processes categorized within one of the three pillars of defense – Prevent, Detect, React, prioritized from lease expensive to fix security vulnerabilities to most expensive.
Speaker: David Kosorok
Director, Application Security
David Kosorok is responsible for Align Technology’s application security testing program. David has over 20 years’ experience in software and security testing and over 10 years’ experience working specifically in security. Prior to joining Align, David has pioneered code security programs for SAP Concur and a large non-profit organization and a few start-up companies.
David holds a number of professional security certifications including a few such as CISSP, CSSLP, GWAPT, CHFI, CEH and a Master of Science in Information Security and Assurance from Western Governor’s University (2017). He has also been a volunteer Beta editor for PenTestMag for a number of years. When not reading great SciFi/Fantasy novels, David enjoys volunteering in his community, hiking, camping and generally enjoying the outdoors. Married 29 years to Kimberly, he is a father of 9 children.