Date: Tuesday, December 9, 2003
Time: 2:10 - 3:10 pm
Room: Monarch Room G

This session will explore application Code Scanning and Vulnerability Testing (White Box/Black Box security testing). The goal is to explain how adding application security testing to your application development lifecycle can improve both security and software quality.

Specific topics will include; reasons for recent popularity in White Box/Black Box security testing, common attack techniques, how security testing mitigates risk of attack, and an overview of an application security testing methodology and current tools.

Presenter:

Bill Hantjis
EDS U.S. Government Solutions
Enterprise Services SPPS (Security and Privacy Professional Services)

Mr. Hantjis has over 12 years of experience in the information technology and security industry working with multiple computing platforms and technologies in both management and technical disciplines. Currently, he is the Director of Delivery for EDS Security and Privacy Professional Services (SPPS). In this role he delivers information assurance processes, methods, tools and technologies to federal, state and local governments, and the private sector. In the past two years, he has delivered services in over 400 engagements in various Information Assurance disciplines including security architecture, assessments, policy, security engineering, training, and managed security services.