Application Security , Next-Generation Technologies & Secure Development
Security Labs: A Boost for Software Development Training
Veracode’s Dave Ferguson on Helping Developers Embrace Security PrinciplesTraditionally, software development training falls short on security. And as enterprises embrace the “shift left” movement, that gap puts them at risk. Veracode’s Dave Ferguson discusses the gap and how Veracode’s new Security Labs was developed to fill it.
In an interview with ISMG, Ferguson discusses:
- Findings from the latest State of Software Security report;
- Why developer training falls short on security;
- The new Security Labs initiative and how it aims to change the game for developer training.
Ferguson is a principal solution architect at Veracode. He has 15 years of experience in application/software security and 12 years prior to that as an application developer. Before Veracode, he served as principal consultant at FishNet Security (now Optiv), led the global application security program at Sabre Corp. and directed the web application scanning product line at Qualys. Dave is the author of the original OWASP Forgot Password Cheat Sheet.