Abstract Details
10/14/2015 | 5:30 PM - 8:00 PM | International IV-V
Dinner and Keynote Address
Security Assurance and Agile Development - an Industry Perspective
This presentation will discuss Oracle’s experience in adapting its software security assurance lifecycle methodology, Oracle Software Security Assurance (OSSA), to agile software development. While Oracle’s software development approach was originally a traditional “waterfall” methodology, through a series of over 100 acquisitions Oracle now has many product organizations which use some variant of agile development. Oracle’s Global Product Security/ Security Program Management (GPS SPM) organization, which is responsible for establishing and overseeing OSSA standards for secure development in Oracle products, has worked with agile product development groups within Oracle to adapt OSSA for these groups.
Presentation:
This presentation has not yet been uploaded.
Handouts:
No handouts have been uploaded.
John Heimann (Primary Presenter), Oracle Corporation, john.heimann@oracle.com;
John Heimann is Vice President, Security Program Management in Oracle's
Global Product Security organization. He is responsible for defining
and overseeing development programs that improve the security assurance
of Oracle's products. Mr. Heimann has 19 years experience in security
program and product management at Oracle, working in Corporate
Architecture, and in the Database and Middleware product organizations.
Prior to Oracle, he spent 10 years at GTE Government Systems
Corporation, working on secure network, cryptographic, and key
management research, design, development, and vulnerability analysis
programs for US Defense and Intelligence Community customers. He has
served on a senior security advisory board for the US DoD. Mr. Heimann
has an AB in Physics, cum laude, from Harvard University.
