Denim Group has been acquired by Coalfire. Learn More>>

Denim Group at SANS “What Works in Application Security Summit” 2010

I will be at the SANS “What Works in Application Security Summit” 2010  next week with some other Denim Group folks.  I am on a panel Thursday morning and I am doing a lunch and learn Friday afternoon.  The full agenda is online here.

The panel is:

Thursday 10:30am – 11:30am

What I Wish I Knew Before Starting a Web Application Security Project

Users share their corporate stories about those painful lessons learned and what works and doesn’t work and why with participants Jim MacLeod, Juniper; Dan Cornell, The Denim Group; Robert Jerdonek, Intuit; Barry Lyons, Northrop Grumman; Mazdak Hashemi,

The lunch and learn is:

Friday 12:15pm – 1:30pm

Treating Security Vulnerabilities Like Software Defects

Penetration testing and code reviews are useful for identifying software security vulnerabilities, but for these vulnerabilities to actually be fixed they typically must be communicated to developers for remediation.  This lunch and learn discusses real-world strategies for bundling security vulnerabilities into software defects and communicating them to development teams for maximum clarity and impact.

We’re really looking forward to the Summit – the sessions look fantastic and there will be a great group of security professionals in attendance.  Contact us if you are going to be there and would like to meet up.


dan _at_


Posted via email from Denim Group’s Posterous

About Dan Cornell

Dan Cornell Web Resolution

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

Leave a Reply

Your email address will not be published. Required fields are marked *