ºÝºÝߣ

Denim Group
118 ºÝºÝߣShares 135 Followers
Personal Information
Organization / Workplace
San Antonio, TX United States
Website
About
Denim Group is the leading secure software development firm, serving as a trusted advisor on matters of software risk and security. The company builds software for the most security conscious while helping organizations assess and mitigate risk within their existing software. Denim Group’s flagship ThreadFix product accelerates the process of software vulnerability remediation, reflecting the company’s rich understanding of what it takes to fix application vulnerabilities faster. Denim Group has emerged as a strong contributor to the larger application security community, and has actively participated in the Open Web Application Security Project (OWASP) since shortly after its inception.
Contact Details
Tags
denim group application security dan cornell software security security owasp information security john dickson appsec threadfix static analysis threadfix application security opensamm software remediation rsa mobile application security devops android vulnerability management risk ios software development sast dast dynamic analysis xss dynamic testing bsides java ids waf mobile security secure development iphone mobile application development security metrics mobile secure devops funding penetration testing open source development teams mobile apps vulnerability manager sdlc austin open software assurance maturity model technology application portfolio metrics cross-site scripting sql injection infosec ci/cd devsecops application security testing static testing hybrid analysis mapping ham ids/ips manual analysis sql san antonio issa dublin zap sonarqube #rsac automated scanning rsa conference owasp zap manual testing cissp cwe vulnerability taxonomy owasp top 10 risk management software compliance wasc 24 mitre common weakness enumeration secure mobile apps dread model appsecusa fud burp suite cross site scripting riverbed enterprise web services mobile application threat model mobile app security risks application security risks mobile app penetration test web application security supply chain training enterprise budget agile database security security training findbugs houseccon net application vulnerability managment texas vulnerability portfolio webinspect penetration developer training appseceu coverity synopsys logging security monitoring intrusion detection application vulnerabilities bingo smartphone buzzword software security remediation @denimgroup esapi rsa 2015 web application firewall ips software assurance maturity model cio ciso compliance sans defect tracking samm rsa 2012 research virtual patching cbt symbiotic security cloud security e-learning relational database cloud 2012 pci database sqli standards software code vulnerability analysis security standards lessons learned sql security organizatoinal behavior process improvement jeremiah grossman waterfall whitehat security network security cybercommand cybersecurity pmd cobol foxpro greg genung portfolio management power builder twitter social media linkedin facebook myspace policy test threat modeling assessment review code development denimg group software reform ireland eu source boston software remediation roi source conference 2011 app design designing apps smartphonesdumbapps smartphonesdumbappscom content smartphones mobile applicaton mitigation mobile browsers risk-ranking security remediation smart phone application security remediation enterprise security api maturity model agile development appsecdc source code review management pen tester black box blue team internal security team framework tools w3af agnitio cornerstones of trust money samsung apps pearson appsec usa steve springett continuous security axway software assurance frameworks bruce jenkins dalai lama honey badger security managers sun tzu crowdsourcing crowdsourced appsec manager manager mind tricks scare tactics security dollars security program resources ceos gray box defender white box albert campa red team itunes strategy strategy security turning the tide denimgroup application vulnerability correlation prevoty rasp global appsec dc 2019 global apses dc digital transformation software security assurance ssa owasp san antonio asset management nmap amass nowsecure log4j audit coverage hp protect 2015 time to fix security benchmarking software attack surface hp protect software testing development tools dhs sbir dhs s&t brocade lascon jailbroken apple google playstore root app store risk-ranked application portfolio software defects application attack surface data jenkins continuous integration systems ci open web application security project it audit security teams governance requirements bugzilla eclipse denver app sec survey ben broussard account entrapment cookies paypal josh sokol project management pmi ipad design patterns dan cornel implementation patterns spring jsp code review statistics budget justification budgeting threat modeling los alamos system builders security defects it @danielcornell acunetix webinar arachni grc sof attackers dev teams ally ally financial ally bank kris curylo devops connect san francisco cto chief technology officer application vulnerability management. application sharepoint veracode hp webinspect tax site attacker amazon consultant wasp bill pay fiver pet project business case @johnbdickson cso ciao pci compliance .net iast checkmarx application security program hp cenzic
See more