Topic: Linking in to your Information Security Career
Speakers: Robert Beggs and Bruce Cowper
One of the most popular questions on the TASK forums is: “how do I break into the security field”? Sadly, it rarely receives an answer – like any other career, it seems to be a matter of who you know, and making connections can be difficult. Tonight we’re going to look at social networking resources on the web, especially LinkedIn and Facebook, and see how we can use these as a way to meet and build professional contacts. Even those who are practicing security specialists may be surprised at how they can use these sites to develop and maintain their own “security networks”. Learn how to market your most important brand on the Internet – yourself.
Topic: Application Security Standards of the PCI
Speakers: Rafael Etges and Ben Sapiro
Rafael Etges and Ben Sapiro will discuss the challenges in achieving Application Security Standards of the Payment Card Industries Data Security Standards (Requirement 6). Using case studies and practices drawn from secure software development methods, Ben and Rafael will explore how to start a sustainable process for building secure applications by design to mitigate risks and meet compliance requirements.
Some of the topics that will be covered are:
- Proving that software applications are developed per industry best practices
- Assessing custom applications
- Building security into an application from the start
- Compliance requirements from PCI DSS, PABP and PA-DSS