SV ISSA Logo (www.sv-issa.org) 

When

Tuesday, March 16, 2021 from 6:00 PM to 8:00 PM PDT
Add to Calendar 


Hosted by

Online bridge information sent after registration.

Contact

Michelle Koblas, Board Member, Silicon Valley Chapter of the ISSA 
The Silicon Valley ISSA 
 
communicationsdirector@sv-issa.org 
Join My Mailing List
 

March 2021 Chapter Meeting

The Crucial Need of getting it right: Core Software Security

Secure Coding and shifting left/getting it right is more critical with the massive increase in lines of code that we depend on to live in this increasingly code driven world. 

 
James Ransome, The Moderator
Dr. James Ransome is the Chief Scientist for CyberPhos, an early-stage cybersecurity startup. He is also a member of the board of directors for the Bay Area Chief Security Officer Council and serves as an adviser to ForAllSecure.
Most recently, James was the Senior Director of Security Development Lifecycle Engineering for Intel's Product Security and Assurance - Governance and Operations Group. In that capacity, he led a team of SDL engineers, architects, and product security experts to drive and implement security practices across the company.

Dr. Ransome's career includes leadership positions in the private and public sectors. He served in three chief information security officer (CISO) roles at Applied Materials, Autodesk, Qwest Communications, and four chief security officer (CSO) positions at Pilot Network Services, Exodus Communications, Exodus Communications - Cable and Wireless Company, and Cisco Collaborative Software Group. Before entering the corporate world, James worked in government service for 23 years supporting the U.S. intelligence community, federal law enforcement, and the Department of Defense.

Dr. Ransome holds a Ph.D. in Information Systems specializing in Information Security, a Master of Science Degree in Information Systems, and graduate certificates in International Business and International Affairs. He taught Applied Cryptography, Advanced Network Security, and Information Security Management as an Adjunct Professor at Nova Southeastern University's Graduate School of Computer and Information Science (SCIS) Information Security Program. The graduate school is designated a National Center of Academic Excellence in Information Assurance Education by the U.S. National Security Agency and the Department of Homeland Security.

Panelists:

Brook Schoenfield

Brook S.E. Schoenfield is the author of Secrets Of A Cyber Security Architect (Auerbach, 2019) and Securing Systems: Applied Security Architecture and Threat Models (CRC Press, 2015). Co-authored with James Ransome, they just completed Building In Security At Agile Speed (Auerbach, 2021). Brook helps clients with their software security and secure design practices. He mentors technical leaders to effectively deliver security strategy. He consults as a technical leader for IOActive Inc. and SEC Consult America’s holistic security architecture services. Previously, he led product security architecture at McAfee (Intel), Autodesk, Cisco Engineering, and Web and Application security for Cisco Infosec. He is a founding member of IEEE’s Center for Secure Design and is a featured Security Architect at the Bletchley Park Museum of Computing. He is the originator of Baseline Application Vulnerability Assessment (BAVA), Just Good Enough Risk Rating (JGERR), Architecture, Threats, Attack Surfaces and Mitigations (ATASM) and developer-centric security. He contributed to Core Software Security (CRC Press, 2014), and co-authored Avoiding the Top 10 Security Design Flaws (IEEE, 2014) and Tactical Threat Modeling (SAFECode, 2017).

Anmol Misra

Anmol Misra is an accomplished leader and researcher with over 15 years of proven experience in delivering business-aligned, revenue-generating solutions for global cloud companies.

His software engineering, security, and consulting background makes him uniquely suited to helping companies innovate using disruptive technologies. He is a team builder focused on mentoring and nurturing high-potential leaders, fostering excellence, and building industry partnerships. He is passionate about enhancing customer trust by embracing Artificial Intelligence, Data Science, and Machine Learning. He is known for his pragmatic approach to security.

He is the co-author of two books: Android Security: Attacks and Defenses, Core Software Security: Security at the source. He is also a contributing author of Defending the Cloud: Waging Warfare in Cyberspace.

Jim Manico

Jim Manico is the founder of Manicode Security where he trains software developers on secure coding and security engineering. He is also the co-founder of the LocoMoco Security Conference and is a investor/advisor for BitDiscovery and Nucleus Security. Jim is a frequent speaker on secure software practices and is a member of the JavaOne rockstar speaker community. He is the author of Iron-Clad Java: Building Secure Web Applications from McGraw-Hill. For more information, visit http://www.linkedin.com/in/jmanico.