London 20 & 21st May 2010, Westminster Conference Centre

** STOP PRESS **

Launch of the International Secure Systems Development Conference (ISSD)
Westminster Conference Centre, London, 20^th & 21^st May 2010

 
The launch of this two day conference at The Westminster Conference Centre, London from 20^th to 21^st May 2010, focuses on both Management/Strategic and Implementation-level topics in secure systems development, with associated tabletop exhibit space. The theme is developing new applications securely and adding security to legacy applications - both standard and web-based.

The Conference is aimed at UK and European Security Vendors &  Business Applications Developers designing products for resale. UK and European Banks and other Financial Institutions, Government Bodies, Security Services responsible for designing new systems in house or managing existing/legacy systems.

The aim is to attract complete Policy-level, Project and Technical implementation teams responsible for developing secure systems within an organisation. This would include Lead Developers, Systems Architects, CISO's, CTO's, Compliance, Risk & Audit Professionals, Government Policymakers and others involved in systems development.

Whilst external threats (and internal subversions) have for years grabbed the IT Security headlines, there has been an increasing realisation amongst many experts that the vast majority of today’s vulnerabilities can be tracked back to shortcomings in application coding, and repeated design failures whereby business-critical applications are simply not able to function as part of today's pervasive security and authentication architectures.
 
The most common response has been to spend large sums on bolt-on security solutions to patch up the holes and vulnerabilities created by bad coding and non-coherent design. This has seen bigger, better and ever more costly hardware and software products coming to market, but often using the same bad coding practices that created the first set of vulnerabilities in the applications they are meant to protect.
 
In today’s increasingly integrated environments, vulnerabilities in operating systems, applications, utilities, browsers, web applications and even security products can create a myriad of back-doors and security liabilities – each one requiring a further layer of the latest technology to patch and protect the enterprise in which it is deployed.
 
The one approach, and the most useful group of solutions that has been missing from this equation are solutions that can help design-in security at the initial coding stages for both security and business applications, and also which create wrap-around security for legacy business and web-based applications allowing existing systems to operate within the framework of a policy-driven business-wide security architecture.
 
The International Secure Systems Development Conference addresses this issue and is being run to help change the balance away from a repeated and ever more costly focus on securing ever more insecure infrastructures, to one which focuses on the creation of inherently secure systems through the introduction of verifiable, secure development methodologies and coherent security architectures.
 
Organisers: ISSDC 2010 is owned by Sarb Sembhi (ISSP-ISSAP, GCIH, GAWN). Sarb is a Principal Security Consultant with Hexdot and is a regular speaker at Information Security Conferences around the world, including RSA Europe, HITB, BCS, ISACA, IIPSec. Sarb is also the President of ISACA (London Chapter) www.isaca.org, a member of ISSA Advisory Board, Eurim, and an individual member of the Parliamentary IT Committee www.pitcom.org.uk.

See www.issdconference.com for delegate tickets and sponsorship opportunities