With the Financial Industry issuing regulations addressing cybersecurity and information security controls, companies are increasingly holding their software vendors accountable for meeting standard application security policies. However, many of these organizations are still dealing with manual processes and arduous penetration testing. This results in minimal documentation of these regulations- putting them and their suppliers at risk of noncompliance, and worse, of breach.
Hear Chris Wysopal, Chief Technology Officer and Co-Founder at Veracode provide tips on how to navigate key financial compliance requirements and regulations through application security and secure development. Some of his discussion points will include:
•The impact of recent major regulations – the EU General Data Protection Regulation (EU GDPR) and NY State Department of Financial Services (NY DFS) Cybersecurity Regulations - on application security standards and secure development practices
•How to get started with secure development practices in order to effectively navigate these requirements
•How to build a software development process that has continuous security, is measurable, and is transparent