Reduce Security Risk in Your Development. Part III: Secure Code Review. Trent R. Hein, CCIE, CISSP, ISSMP, ISSAP, CSSA. What We’ll Cover Today. Recap of Secure Agile Development key topics How does secure code review fit in an Agile workflow? Code review documentation Tips & Tricks.
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Part III: Secure Code Review
Trent R. Hein, CCIE, CISSP, ISSMP, ISSAP, CSSA
Traditional / Waterfall
It’s not done until it’s provably secure.
Code review is..
Code review isn’t..
How do we know what to look for when performing code review??