Software professionals know that the working relationship between developers and security teams can be complicated. Most security professionals feel it’s part of a programmer’s role to write code securely, but most developers get next to no support to do it.
Despite this dynamic between developers and security architects becoming part of IT lore, the fact remains that these technical teams are two sides of the same coin. Like the head and tail, developers and security specialists have alternative perspectives, which means they don’t always possess clear visibility or awareness of what the other is doing – even though they are working towards the same goal.
Read the article in full on Help Net Security:
Stephen de Vries
Stephen is our co-founder and CEO, and leads our team in building the IriusRisk Threat Modeling platform. He has a strong background in web application and particularly Java security, with an emphasis on automated security testing and risk assessment. He has published numerous original research papers and presented at leading conferences such as Blackhat USA/Europe, DevOps Connect, and OWASP, a founding leader of the OWASP Java Project, and contributor to OWASP ASVS and Testing projects. Despite being CEO, Stephen is very much involved in all operations and functions across the company and loves to share his experience with delegates at our hosted events, and external conferences.