Building a secure development program (and culture)

Thursday 13 December 2018, 6.00pm - 7.00pm Registration and networking opportunity, 7.00pm Presentation
(light refreshments will be provided)

Sage (UK) Ltd, North Park, Great Park, Newcastle Upon Tyne, NE13 9AA

Free of charge for both BCS members and non-members


Over several years, Sage has steadily been transitioning from a primarily on-premise, desktop software company to a SaaS company. We recognised early on that this transition required a radical transformation in our approach to secure development to reflect the corresponding step-change in our responsibilities for our customers' data.

This talk is a retrospective on that transformation, pulling out some of the highlights and looking at some of the speed-bumps along the way. It should be a useful guide for anyone contemplating the same kind of journey.


Mike Goodwin started his working life as an academic, then spent a few years researching novel processes for treating highly radioactive waste before settling 20 years ago into software development. He has worked in a start-up, a government corporation and a FTSE100 company as well as on open source projects.

Over time he became more and more obsessed with information security and application security in particular and 4 years ago, moved into a full-time security role, leading the establishment of secure development practises at Sage where he is currently VP of Product Security. He has also been an active member of OWASP, co-founding the Newcastle Chapter.


6.00pm - 7.00pm Registration and Networking Opportunity (light refreshments will be provided)

7.00pm Presentation 

Please report to the Main Reception, visitor car parking is available on site.

Please be aware that your name for the purpose of attendance only will be passed to Sage (UK)