BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//SAFECode - ECPv6.6.4.2//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-ORIGINAL-URL:https://safecode.org
X-WR-CALDESC:Events for SAFECode
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20160313T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20161106T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20170312T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20171105T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20180311T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20181104T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20190310T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20191103T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20200308T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20201101T060000
END:STANDARD
TZID:America/Los_Angeles
BEGIN:DAYLIGHT
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
TZNAME:PDT
DTSTART:20200308T100000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
TZNAME:PST
DTSTART:20201101T090000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;VALUE=DATE:20201116
DTEND;VALUE=DATE:20201119
DTSTAMP:20260515T051912
CREATED:20201013T185631Z
LAST-MODIFIED:20201013T185720Z
UID:3930-1605484800-1605743999@safecode.org
SUMMARY:The 19th International Common Criteria Conference
DESCRIPTION:  \nThe 19th International Common Criteria Conference\n16-18 November 2020 | Virtual Conference and Vendor Forum \nClick here to learn more \nSetting the Global Agenda for Common Criteria \nRegister now for the 19th ICCC\, the leading forum for the community of professionals involved in Common Criteria (CC)\, the widest available mutual recognition of secure IT products. ICCC is a high-level technical conference\, a forum for discussion on the policy and application of CC\, and a professional networking opportunity for those in charge of specification\, development\, evaluation\, certification and approval with regard to the IT security of products and systems. The three-day conference program will feature government and industry experts from across the international Common Criteria community.
URL:https://safecode.org/event/the-19th-international-common-criteria-conference/
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20200225T160000
DTEND;TZID=America/New_York:20200225T170000
DTSTAMP:20260515T051912
CREATED:20200221T165130Z
LAST-MODIFIED:20200221T165204Z
UID:3026-1582646400-1582650000@safecode.org
SUMMARY:RSA Session: Discussion on Secure Software Development Framework
DESCRIPTION:
URL:https://safecode.org/event/discussion-on-secure-software-development-framework/
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/Los_Angeles:20200225T140000
DTEND;TZID=America/Los_Angeles:20200225T153000
DTSTAMP:20260515T051912
CREATED:20191217T204747Z
LAST-MODIFIED:20191217T204747Z
UID:2922-1582639200-1582644600@safecode.org
SUMMARY:RSA Presentation with Steve Lipner
DESCRIPTION:Over 50 years\, Steven Lipner has led a lot of security projects that he thought would change the world. Many of them crashed and burned at great cost in money and reputation. There were common threads including reliance on government claims about the market and on minimal secure systems built from scratch. This talk will describe some failures\, some lessons learned the hard way\, and how they paid off. \n\nLearn more here.
URL:https://safecode.org/event/rsa-presentation-with-steve-lipner/
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20191028
DTEND;VALUE=DATE:20191031
DTSTAMP:20260515T051912
CREATED:20190926T205651Z
LAST-MODIFIED:20190926T205651Z
UID:2870-1572220800-1572479999@safecode.org
SUMMARY:ISC(2)
DESCRIPTION:SAFECode secured two presentations at the 2019 (ISC)2 Security Congress\, October 28-30\, 2019 in Orlando\, FL at the Walt Disney World Swan and Dolphin Resort.  The hour-long presentations will focus on Security Champions and SDL respectively. (ISC)² Security Congress brings together more than 4\,000 industry colleagues\, offers 150+ educational and thought-leadership sessions\, and fosters collaboration with other forward-thinking companies. The goal of this cybersecurity conference is to advance security leaders by arming them with the knowledge\, tools\, and expertise to protect their organizations. Below is an overview of the presentations. \nBuilding Secure Software Takes A Champion will be presented by Altaz Valani from Security Compass.  This hour-long session will explore the importance of Security Champions (SC).  Many leading companies consider them crucial to software security success. Participants will learn how to create a successful SC program – based on the real-world experiences of SAFECode members.  This session is for anyone working to build a security-supportive software development culture. \nSAFECode Executive Director Steve Lipner will lead a session titled Getting Started With SDL.  This session will reveal resources to help small-to-midsized organizations create effective SDL programs and address secure development concerns that are especially important to smaller organizations. Most important\, it will describe approaches to building a program “from nothing” with limited resources. \nFor more information or to register for (ISC)2 Security Conference click here.
URL:https://safecode.org/event/isc2/
LOCATION:Orlando\, Florida
CATEGORIES:Industry Events,Speaking Opportunities
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20191019
DTEND;VALUE=DATE:20191020
DTSTAMP:20260515T051912
CREATED:20190926T210507Z
LAST-MODIFIED:20190926T210545Z
UID:2872-1571443200-1571529599@safecode.org
SUMMARY:BASC (Boston Application Security Conference)
DESCRIPTION:The BASC will be a free*\, one day\, informal conference\, aimed at increasing awareness and knowledge of application security in the greater Boston area. While many of the presentations will cover state-of-the-art application security concepts\, the BASC is intended to appeal to a wide-array of attendees. Application security professionals\, professional software developers\, software quality engineers\, computer science students\, and security software vendors should be able to come to the BASC\, learn\, and hopefully enjoy themselves at the same time. \nSAFECode Member\, Izar Tarandach\, will serve as a speaker.
URL:https://safecode.org/event/basc-boston-application-security-conference/
LOCATION:Burlington\, MA
CATEGORIES:Industry Events,Speaking Opportunities
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20190220T130000
DTEND;TZID=America/New_York:20190220T140000
DTSTAMP:20260515T051912
CREATED:20190204T141540Z
LAST-MODIFIED:20190204T150926Z
UID:2646-1550667600-1550671200@safecode.org
SUMMARY:CSA and SAFECode Host: The Role of Security Champions in DevOps
DESCRIPTION:Organizations need Security Champions to help foster security best practices to ensure a security-supportive culture. During this webinar the Cloud Security Alliance/SAFECode DevSecOps Working Group will share how to build a group of Security Champions and the characteristics they possess.
URL:https://safecode.org/event/the-role-of-security-champion-in-devops/
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20170404T130000
DTEND;TZID=America/New_York:20170404T130000
DTSTAMP:20260515T051912
CREATED:20170328T160001Z
LAST-MODIFIED:20170328T160145Z
UID:1360-1491310800-1491310800@safecode.org
SUMMARY:Increasing Software Security Up and Down the Supply Chain
DESCRIPTION:Overview\nThe most dramatic increases in security come from avoiding vulnerabilities in enterprise systems and applications. Studies by NIST\, the Center for Internet Security and the SANS What Works program continually show that security programs that can remove vulnerabilities before they are exposed on product systems actually end up reducing security spending while measurably decreasing the frequency and size of breaches and other cybersecurity incidents. \nThis SANS webinar will take a “What Works” look at successful efforts in reducing software vulnerabilities across the entire enterprise software life cycle and supply chain. Attend this webinar and hear advice from and get your questions answered by John Pescatore\, SANS Director of Emerging Security Trends; Steve Lipner\, SAFECode Executive Director; John Martin\, Boeing Director of COTS Software Security; and Chris Wysopal\, Veracode CTO and co-founder \nSpeaker Bios\nJohn Pescatore \nJohn Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner\, 11 years with GTE\, and service with both the National Security Agency\, where he designed secure voice systems\, and the U.S. Secret Service\, where he developed secure communications and voice systems “and the occasional ballistic armor installation.” John has testified before Congress about cyber security\, was named one of the 15 most-influential people in security in 2008 and remains an NSA-certified cryptologic engineer. \n\nSteve Lipner \nSteve Lipner is the Executive Director of SAFECode\, a non-profit organization dedicated to increasing trust in ICT products and services through the advancement of effective software assurance methods. He retired in 2015 as Partner Director of Software Security at Microsoft where he was the creator and long-time leader of the Microsoft Security Development Lifecycle (SDL). Prior to his retirement\, Lipner served as board chair of SAFECode. Lipner was also responsible for Microsoft’s policies and strategies for security evaluation of products by governments\, and for Microsoft’s approach to supply chain security and product integrity. He holds twelve U.S. patents in computer and network security\, and was elected in 2015 to the National Cybersecurity Hall of Fame. \n\nJohn Martin \nJohn Martin\, CISSP\, CISM\, is a 30 year computing security professional whose first meaningful claims to anonymity lay in BBS doors and other long-forgotten dial-up exploits. In his spare time\, he designs specialized NSA-proof tin-foil hats designed to keep the implant signals in. \nHe was an early proponent of security systems test automation and has performed structured security testing across three continents. \nJohn developed and manages Boeing’s standards-based Supplier Application Assessment and Secure Code Capability Assessment Programs which focus on reducing risk and cost posed by security vulnerabilities in third-party software through software testing and secure-code program development. In this function\, John and his team work directly with many software suppliers to help them understand the benefits for integrating software security into their development process. In the past eleven years spent at Boeing. John has worked with many business units and leaders to shift their idea of security as a burden to understanding how the security teams can help accelerate \n\nChris Wysopal \nChris Wysopal is Co-Founder\, Chief Technology Officer at Veracode\, which he co-founded in 2006. He oversees technology strategy and information security. Prior to Veracode\, Chris was vice president of research and development at security consultancy @stake\, which was acquired by Symantec. \nIn the 1990’s\, Chris was one of the original vulnerability researchers at The L0pht\, a hacker think tank\, where he was one of the first to publicize the risks of insecure software. He has testified to the US Congress on the subjects of government security and how vulnerabilities are discovered in software. \nChris received a BS in computer and systems engineering from Rensselaer Polytechnic Institute. He is the author of The Art of Software Security Testing. \nChris is often called upon to download the latest Minecraft mods for his 6-year-old son. An avid photographer and nature-lover\, Chris spends his free time hiking the many conservation trails near his home outside Boston.
URL:https://safecode.org/event/increasing-software-security-up-and-down-the-supply-chain/
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160913
DTEND;VALUE=DATE:20160917
DTSTAMP:20260515T051912
CREATED:20160830T134427Z
LAST-MODIFIED:20160830T135327Z
UID:896-1473724800-1474070399@safecode.org
SUMMARY:SAFECode/CSA Developer Day at CSA Congress
DESCRIPTION:The Cloud Security Alliance (CSA)\, the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment\, and SAFECode will be hosting the first ever SAFECode/CSA Developer Day\, a free training event scheduled for Monday\, September 12\, 1:00 PM – 6:00 PM\, a day prior to the CSA Congress at P.S.R. 2016 (Privacy. Security. Risk. 2016 Presented by the IAPP Privacy Academy and CSA Congress\, September 13-16). \nThe inaugural half day event is being held to provide practitioners with an important general primer on the core principles and applications of software assurance\, and how to build in security utilizing cloud and devops practices. Attendees will also be provided with insight on state-of-the-art software assurance trends and learn how they can deepen their knowledge of software assurance.  The event agenda includes three sessions: \n\nSafeCode: Driving Software Assurance\nCSA: Cloud + Dev = Security Awesome\nPutting Theory into Practice: Software Assurance Case Studies\n\nWant more details? View the press release. \nTo register for this free event\, please click here.
URL:https://safecode.org/event/safecodecsa-developer-day-at-csa-congress/
LOCATION:San Jose\, CA\, United States
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160822
DTEND;VALUE=DATE:20160825
DTSTAMP:20260515T051912
CREATED:20160830T135855Z
LAST-MODIFIED:20160830T135947Z
UID:903-1471824000-1472083199@safecode.org
SUMMARY:ISACA GRC Conference
DESCRIPTION:The IIA and ISACA are pleased to once again collaborate to bring you the 2016 Governance\, Risk\, and Control (GRC) Conference. Please continue to check back\, as additional information is forthcoming! \nJoin more than 600 governance\, risk\, and control professionals from 40+ countries at the event that draws together the best and brightest minds to embrace challenges\, forge solutions\, and define the future of global GRC.
URL:https://safecode.org/event/isaca-grc-conference/
LOCATION:Fort Lauderdale\, FL\, United States
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160707
DTEND;VALUE=DATE:20160708
DTSTAMP:20260515T051912
CREATED:20160830T143815Z
LAST-MODIFIED:20160830T143815Z
UID:907-1467849600-1467935999@safecode.org
SUMMARY:DC Fly-in
DESCRIPTION:Five SAFECode board members visited Washington DC earlier this month and met with representatives of the US Federal government interested in cybersecurity. With the growing awareness amongst policy makers of the importance of software security assurance and its critical role in cybersecurity\, it is important to further educate policy makers on this complex issue and industry best practices in this space.
URL:https://safecode.org/event/dc-fly-in/
LOCATION:Washington D.C.\, DC\, United States
CATEGORIES:Industry Events
END:VEVENT
END:VCALENDAR