Security in agile projects

When: 3rd Dec 2015, 18:00 - 3rd Dec 2015, 20:30
Where: BCS, 1st Floor, The Davidson Building, 5 Southampton Street, London, WC2E 7HA
Town/City: London
Organiser: Joint BCS Business Change Specialist Group & BCS Agile Methods Specialist Group
Price: Free
Further Information: Further Information
Due to unforeseen circumstances this event has been cancelled. The speaker is unwell and cannot attend tomorrow.

Joint BCS Business Change Specialist Group & BCS Agile Methods Specialist Group event.


“Application security processes have not typically kept pace with the adoption of agile software development. For example, penetration testing usually takes place immediately before the release of the project, encouraging developers and project managers to find workarounds for vulnerabilities in a rush to meet deadlines. A quick fix for one vulnerability is likely to make another component vulnerable, leading to multiple unpatched vulnerabilities further down the road.

However, making architectural decisions about security too early can also create issues. If you don’t have all the information needed to make the right decision at the start, by the time security vulnerabilities are exposed it can be too late to change the architecture.

This presentation will offer some solutions for embedding security in agile software development projects.”

Speaker Biography

Peter Wood FBCS CITP MIEEE CISSP M.Inst.ISP“Peter Wood FBCS CITP MIEEE CISSP M.Inst.ISP, Chief Executive Officer, First Base Technologies LLP

Peter is a world-renowned ethical hacker and security evangelist, speaking at conferences and seminars on ethical hacking and social engineering. He has appeared in documentaries for BBC television, provided commentary on security issues for TV and radio and written many articles on a variety of security topics.

Peter has worked in the electronics and computer industries for over forty-five years. He founded First Base Technologies in 1989, providing penetration testing and information security consultancy to major commercial and government clients.

He is a Fellow of the BCS, a Chartered IT Professional and CISSP, and is UK Chair for the Corporate Executive Programme. He is also a long-standing member of ISSA, ISACA and the Institute of Information Security Professionals.”