Upload File

software security transformation - wordpress.com · security hardening. transformation project...

  • Home
  • Documents
  • Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software
17
Software Security Transformation Nahil Mahmood CEO, Delta Tech

Upload: others

Post on 05-Jul-2020

10 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Software Security Transformation

Nahil Mahmood

CEO, Delta Tech

Page 2: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Quality software is secure software

Page 3: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Pakistan’s Security Posture

ReactiveSuperficial

ContentiousGovernance Overkill

DENIAL

Page 4: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Information Security: Ground Realities

IT

InfoSec

Compliance

Risk

Audit

Page 5: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Security Transformation

Page 6: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

4 Layer Transformation Model

Security Governance

Security Engineering

Vulnerability Management

Security Hardening

Page 7: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Transformation Project Tracks

TRACK 1: IT INFRASTRUCTURE

TRACK 2: CORE ENTERPRISE ERP

TRACK 3: OTHER SOFTWARE (INTERNAL/EXTERNAL)

TRACK 4: DESKTOPS & BROWSERS

TRACK 5: VULNERABILITY MANAGEMENT

TRACK 6: MOBILE SECURITY / BYOD

TRACK 7: ISMS DOCUMENTATION & PROCESSES

Page 8: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Software Security Program

1. Select Controls2. Pilot Project3. Validate Controls4. Automated /Manual Testing5. Penetration Testing6. Change Management7. Production

Page 9: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Software Security [Testing]

QA SECURITY

Page 10: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Software Security Resources

MSTG MASVS SAMM

Page 11: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

SAMM-2

Page 12: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

SAMM-2

Page 13: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

SAMM-2

Page 14: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

SAMM-2

Page 15: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

SAMM-2

Page 16: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Conclusion – Software Security Transformation

• Committed software security program

• Merge software security & QA

• Practical frameworks and tools available

• Education, training, learning

• Security leadership

Page 17: Software Security Transformation - WordPress.com · security hardening. transformation project tracks track 1: it infrastructure track 2: core enterprise erp track 3: other software

Thank you !

Nahil Mahmood

[email protected]

mailto:[email protected]

Computer Security e-track - pnbiit.ac.inpnbiit.ac.in/download/etrac/jul_sep09.pdf · Computer Security e-track business of future. e-track ... Pratima Trivedi Editorial Team Pramod

Ensuring security for digital transformation · Ensuring security for digital transformation World events and newsworthy cyberattacks have raised the profile of security, compelling

Security Track #BNC2017

Business Transformation 2010 and Beyond - CWU: Home · Business Transformation 2010 and Beyond Job Security/Managing the Change . Royal Mail and the CWU have an excellent track record

The Transformation is well on track

MERCK ANNUAL REPORT 2013 … Annual Report 2013 Transformation on track MERCK ANNUAL REPORT 2013 TRANSFORMATION ON TRACK Contents Transformation on track 003 Letter from Karl-Ludwig

SCRLC Regulatory/Security Track

Transformation of the National Security Sector

railway track security system report

A year of business improvement; transformation on track annou… · A year of business improvement; transformation on track . Group sales from continuing operations up 3.4% . Group

Cryptography and Network Security: A Historical Transformation

Security Web Challenge Sec-Track por @nonroot

DBS2016: The Digital Transformation of Security

TRANSFORMATION CONCEPTS FOR NATIONAL SECURITY …

Biometric Template Transformation: A Security Analysisbiometrics.cse.msu.edu/.../NagarTempTransSecAnalysis_SPIE10.pdf · Biometric Template Transformation: A Security Analysis Abhishek

Security Transformation Overview - Oxford Computer Group USoxfordcomputergroup.com/.../Security-Transformation-Overview-5-10 … · Security Transformation Overview James Cowling,

Railway Track Security Systm

Digital Transformation: Workforce | Security | IT · 2020-03-04 · Workforce Transformation Sessions –IT Leadership Track Title Speaker Description Workforce Transformation: Balancing

SECURITY TRANSFORMATION FOR STATE AND LOCAL …

Agricultural Transformation in Zambia - Food Security Group

Food Security & Food Market Transformation 2010

Zero Trust Security Transformation - Akamaiow To Guide Zero Trust Security Transformation 1 Executive Summary ... a Zero Trust security model enables orchestration through API, as

Regulatory/Security Track Scope Included: -Understand existing supply chain security programs; track proposed changes -Track emerging supply chain security

October 2013 Journal of Conflict Transformation & Security

Security Architecture for Digital Transformation

TRANSFORMATION CONCEPTS FOR NATIONAL SECURITY IN …

PuppetConf track overview: Security

Journal of Conflict Transformation & Security

Structural Transformation and Food Security: Their · PDF fileStructural Transformation and Food Security: Their ... to both structural transformation and food security. ... colonies

Security Sector Transformation- Praxis From the Ground

Fast Track Your Digital Transformation Journey with a ... · Fast Track Your Digital Transformation Journey With Managed SD-WAN of IT decision makers indicated they prefer a fully

Security, Compliance and Digital Transformation in ... · Security, Compliance and Digital Transformation in Healthcare Cloud Provider Security Attributes Healthcare Digital Transformation

Security Leadership Enabling Business Transformation

Fast-Track Your Digital Transformation

ANALYTIC TrANsformATIoN - Homeland Security Digital