BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//SAFECode - ECPv6.6.4.2//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:SAFECode
X-ORIGINAL-URL:https://safecode.org
X-WR-CALDESC:Events for SAFECode
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20160313T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20161106T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20170312T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20171105T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20180311T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20181104T060000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;VALUE=DATE:20180327
DTEND;VALUE=DATE:20180529
DTSTAMP:20260413T053909
CREATED:20171019T160351Z
LAST-MODIFIED:20171019T162158Z
UID:1740-1522108800-1527551999@safecode.org
SUMMARY:World Cybersecurity Congress 2018
DESCRIPTION:SAFECode’s Treasurer\, David Lenoe\, Director for Secure Software Engineering at Adobe Systems\, will be giving a presentation entitled\, “When Security Tools Collide: Testing the real-world usefulness of two services” on Day 2 (Wednesday\, 28 March 2018). \nAgenda
URL:https://safecode.org/event/world-cybersecurity-congress-2018/
LOCATION:London\, United Kingdom
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20180130
DTEND;VALUE=DATE:20180201
DTSTAMP:20260413T053909
CREATED:20180126T195658Z
LAST-MODIFIED:20180126T195658Z
UID:2256-1517270400-1517443199@safecode.org
SUMMARY:OWASP AppSec California 2018
DESCRIPTION:Opening Keynote – Flipping the script: Fighting Advanced Threats at their Software Roots\nEric Baize\, Chairman\, SAFECode\nTuesday\, January 30 • 9:25am – 10:15am \n  \nEvent details:\nThe Open Web Application Security Project (OWASP) Los Angeles Chapter is teaming up with the Orange County\, San Diego\, SF Bay Area\, and the Inland Empire chapters to bring you the FIFTH Annual AppSec California. The event is a one of a kind experience for information security professionals\, developers\, and QA and testing professionals\, as they gather at the beach from around the world to learn and share knowledge and experiences about secure systems and secure development methodologies. \nKeynote details:\nFor almost two decades\, software security practitioners have successfully defined advanced techniques and tools that can effectively be applied to develop secure software. Yet\, all recent major security breaches can be linked to a software vulnerability – either left unpatched or a zero day – that made the attacker’s job easier. Today\, with tens of millions of developers creating code for all kinds of software-enabled devices\, mobile apps and cloud services\, it is time to expand the fight against advanced threats and focus on how to scale software security. \nScaling software security will require expanding the security conversation beyond developers. This talk will challenge the entire software ecosystem to play their part in building more secure software and deliver software security at scale. Learning from the collected real-world experience of SAFECode’s members\, we will review short term strategies for development organizations to adopt a secure software development process. For the longer term\, we will discuss the drastic changes required in how we teach\, develop\, test\, govern and purchase software-based products to permanently change the software culture and deliver software security at scale. \nEvent Page
URL:https://safecode.org/event/owasp-appsec-california-2018/
LOCATION:Santa Monica\, CA
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20171122
DTEND;VALUE=DATE:20171123
DTSTAMP:20260413T053909
CREATED:20171019T155633Z
LAST-MODIFIED:20171019T162313Z
UID:1735-1511308800-1511395199@safecode.org
SUMMARY:Cyber Security for Industry 4.0
DESCRIPTION:Board member Manuel Ifland\, Senior IT Security Consultant at Siemens AG\, will be giving a presentation on “Industry 4.0 – Lessons Learned from the Digital Supply Chain” at Day 2 of the conference. \nPresentation Details
URL:https://safecode.org/event/cyber-security-for-industry-4-0/
LOCATION:Kowloon\, Hong Kong\, Kowloon\, Hong Kong
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20170925
DTEND;VALUE=DATE:20170928
DTSTAMP:20260413T053909
CREATED:20171019T161151Z
LAST-MODIFIED:20171019T162242Z
UID:1749-1506297600-1506556799@safecode.org
SUMMARY:2017 Security Congress
DESCRIPTION:Executive Director Steve Lipner was named a Fellow of (ISC)²\, an award established to honor and distinguish a select number of elite information security professionals who have made outstanding contributions\, throughout their careers\, to the information security profession. \nPress release
URL:https://safecode.org/event/2017-security-congress/
LOCATION:NV
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20170924
DTEND;VALUE=DATE:20170927
DTSTAMP:20260413T053909
CREATED:20171019T160949Z
LAST-MODIFIED:20171019T161257Z
UID:1743-1506211200-1506470399@safecode.org
SUMMARY:IEEE Secure Development Conference
DESCRIPTION:Keynote Speaker: Eric Baize\, Chairman\, SAFECode \nScaling Secure Development by Changing the Software Culture Code \nSlideShare \n   \n  Eric Baize\, Chairman\, SAFECode\, Keynote at IEEE SecDev Conference 2017  from Hope Admin
URL:https://safecode.org/event/ieee-secure-development-conference/
LOCATION:Cambridge\, MA
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20170404T130000
DTEND;TZID=America/New_York:20170404T130000
DTSTAMP:20260413T053909
CREATED:20170328T160001Z
LAST-MODIFIED:20170328T160145Z
UID:1360-1491310800-1491310800@safecode.org
SUMMARY:Increasing Software Security Up and Down the Supply Chain
DESCRIPTION:Overview\nThe most dramatic increases in security come from avoiding vulnerabilities in enterprise systems and applications. Studies by NIST\, the Center for Internet Security and the SANS What Works program continually show that security programs that can remove vulnerabilities before they are exposed on product systems actually end up reducing security spending while measurably decreasing the frequency and size of breaches and other cybersecurity incidents. \nThis SANS webinar will take a “What Works” look at successful efforts in reducing software vulnerabilities across the entire enterprise software life cycle and supply chain. Attend this webinar and hear advice from and get your questions answered by John Pescatore\, SANS Director of Emerging Security Trends; Steve Lipner\, SAFECode Executive Director; John Martin\, Boeing Director of COTS Software Security; and Chris Wysopal\, Veracode CTO and co-founder \nSpeaker Bios\nJohn Pescatore \nJohn Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner\, 11 years with GTE\, and service with both the National Security Agency\, where he designed secure voice systems\, and the U.S. Secret Service\, where he developed secure communications and voice systems “and the occasional ballistic armor installation.” John has testified before Congress about cyber security\, was named one of the 15 most-influential people in security in 2008 and remains an NSA-certified cryptologic engineer. \n\nSteve Lipner \nSteve Lipner is the Executive Director of SAFECode\, a non-profit organization dedicated to increasing trust in ICT products and services through the advancement of effective software assurance methods. He retired in 2015 as Partner Director of Software Security at Microsoft where he was the creator and long-time leader of the Microsoft Security Development Lifecycle (SDL). Prior to his retirement\, Lipner served as board chair of SAFECode. Lipner was also responsible for Microsoft’s policies and strategies for security evaluation of products by governments\, and for Microsoft’s approach to supply chain security and product integrity. He holds twelve U.S. patents in computer and network security\, and was elected in 2015 to the National Cybersecurity Hall of Fame. \n\nJohn Martin \nJohn Martin\, CISSP\, CISM\, is a 30 year computing security professional whose first meaningful claims to anonymity lay in BBS doors and other long-forgotten dial-up exploits. In his spare time\, he designs specialized NSA-proof tin-foil hats designed to keep the implant signals in. \nHe was an early proponent of security systems test automation and has performed structured security testing across three continents. \nJohn developed and manages Boeing’s standards-based Supplier Application Assessment and Secure Code Capability Assessment Programs which focus on reducing risk and cost posed by security vulnerabilities in third-party software through software testing and secure-code program development. In this function\, John and his team work directly with many software suppliers to help them understand the benefits for integrating software security into their development process. In the past eleven years spent at Boeing. John has worked with many business units and leaders to shift their idea of security as a burden to understanding how the security teams can help accelerate \n\nChris Wysopal \nChris Wysopal is Co-Founder\, Chief Technology Officer at Veracode\, which he co-founded in 2006. He oversees technology strategy and information security. Prior to Veracode\, Chris was vice president of research and development at security consultancy @stake\, which was acquired by Symantec. \nIn the 1990’s\, Chris was one of the original vulnerability researchers at The L0pht\, a hacker think tank\, where he was one of the first to publicize the risks of insecure software. He has testified to the US Congress on the subjects of government security and how vulnerabilities are discovered in software. \nChris received a BS in computer and systems engineering from Rensselaer Polytechnic Institute. He is the author of The Art of Software Security Testing. \nChris is often called upon to download the latest Minecraft mods for his 6-year-old son. An avid photographer and nature-lover\, Chris spends his free time hiking the many conservation trails near his home outside Boston.
URL:https://safecode.org/event/increasing-software-security-up-and-down-the-supply-chain/
LOCATION:NV
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160913
DTEND;VALUE=DATE:20160917
DTSTAMP:20260413T053909
CREATED:20160830T134427Z
LAST-MODIFIED:20160830T135327Z
UID:896-1473724800-1474070399@safecode.org
SUMMARY:SAFECode/CSA Developer Day at CSA Congress
DESCRIPTION:The Cloud Security Alliance (CSA)\, the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment\, and SAFECode will be hosting the first ever SAFECode/CSA Developer Day\, a free training event scheduled for Monday\, September 12\, 1:00 PM – 6:00 PM\, a day prior to the CSA Congress at P.S.R. 2016 (Privacy. Security. Risk. 2016 Presented by the IAPP Privacy Academy and CSA Congress\, September 13-16). \nThe inaugural half day event is being held to provide practitioners with an important general primer on the core principles and applications of software assurance\, and how to build in security utilizing cloud and devops practices. Attendees will also be provided with insight on state-of-the-art software assurance trends and learn how they can deepen their knowledge of software assurance.  The event agenda includes three sessions: \n\nSafeCode: Driving Software Assurance\nCSA: Cloud + Dev = Security Awesome\nPutting Theory into Practice: Software Assurance Case Studies\n\nWant more details? View the press release. \nTo register for this free event\, please click here.
URL:https://safecode.org/event/safecodecsa-developer-day-at-csa-congress/
LOCATION:San Jose\, CA\, United States
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160913
DTEND;VALUE=DATE:20160914
DTSTAMP:20260413T053909
CREATED:20160830T133718Z
LAST-MODIFIED:20160830T133829Z
UID:892-1473724800-1473811199@safecode.org
SUMMARY:(ISC)2 Security Congress
DESCRIPTION:Speakers:\nJohn Martin\, Program Manager\, COTS Software Security\, The Boeing Company \nShaun Gilmore\, Senior Manager\, Microsoft \nCOTS Acquisition: Buyers Are from Mars\, Suppliers from Venus\nWith more than 80 percent of all purchased software containing critical vulnerabilities\, the buyer/supplier dynamic in software purchasing has changed dramatically. Buyer assurance requirements have gone from non-existent to unachievable\, and supplier responses have ranged from denial to servile. The past lack of standards around what elements of software assurance are important to a buyer results in significant organizational churn\, mistrust and unnecessary expense to both buyer and supplier. The SAFECode publication\, Principles of Software Assurance Assessment\, is a seminal effort in closing this gap. This presentation outlines the practical\, scalable implementation of a secure COTS program. \nJoin SAFECode members John Martin and Shaun Gilmore at the (ISC)2 Security Conference to understand the three best-practice activities every buyer can ask for\, build a scalable software assurance implementation strategy that works for both buyer and supplier\, and achieve better assurance for COTS software while helping to reduce “compliance” spending. \nFor more information\, click here to visit the event page.
URL:https://safecode.org/event/isc2-security-congress/
LOCATION:Orlando\, FL\, United States
CATEGORIES:Speaking Opportunities
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160822
DTEND;VALUE=DATE:20160825
DTSTAMP:20260413T053909
CREATED:20160830T135855Z
LAST-MODIFIED:20160830T135947Z
UID:903-1471824000-1472083199@safecode.org
SUMMARY:ISACA GRC Conference
DESCRIPTION:The IIA and ISACA are pleased to once again collaborate to bring you the 2016 Governance\, Risk\, and Control (GRC) Conference. Please continue to check back\, as additional information is forthcoming! \nJoin more than 600 governance\, risk\, and control professionals from 40+ countries at the event that draws together the best and brightest minds to embrace challenges\, forge solutions\, and define the future of global GRC.
URL:https://safecode.org/event/isaca-grc-conference/
LOCATION:Fort Lauderdale\, FL\, United States
CATEGORIES:Industry Events
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20160707
DTEND;VALUE=DATE:20160708
DTSTAMP:20260413T053909
CREATED:20160830T143815Z
LAST-MODIFIED:20160830T143815Z
UID:907-1467849600-1467935999@safecode.org
SUMMARY:DC Fly-in
DESCRIPTION:Five SAFECode board members visited Washington DC earlier this month and met with representatives of the US Federal government interested in cybersecurity. With the growing awareness amongst policy makers of the importance of software security assurance and its critical role in cybersecurity\, it is important to further educate policy makers on this complex issue and industry best practices in this space.
URL:https://safecode.org/event/dc-fly-in/
LOCATION:Washington D.C.\, DC\, United States
CATEGORIES:Industry Events
END:VEVENT
END:VCALENDAR