A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:


Agilely Compliant yet Insecure - Tom Ruff (BSides Augusta 2016) (Hacking Illustrated Series InfoSec Tutorial Videos)

Agilely Compliant yet Insecure
Tom Ruff

Many software development projects are now being managed Agilely. Whether it is SCRUM, Extreme, Kanban or a hybrid, Agile is here to stay. This talk focuses on how Agile development is/can be a breeding ground for insecure software. I will explore this with examples from both commercial and governmental development projects. I will also make suggestions on how to prevent this in any environment.

"Tom Ruff has worked in IT for 26 years including over 10 years of software development. He also has experience in system administration in Windows and Linux environments. He worked on DoD contracts for 6 years as a developer and system administrator and made sure hundreds of servers were compliant (but not necessarily secure). While working for the DoD, Tom became a Certified ScrumMaster and GIAC Certified Secure Software Programmer - Java. Tom currently works for FireEye as a part of the Threat Analytics Platform team."


Back to BSides Augusta 2016 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast