FFIEC News

SPI Dynamics Contributes to the Development of the SANS Institute's First Secure Coding Certification Examination for Developers

(March 26, 2007)--S.P.I. Dynamics, provider of web application security testing software, said that the company has partnered with renowned educational organization, the SANS Institute, to help develop and provide significant content to the GIAC (Global Information Assurance Certification) Secure Software Professional (GSSP) exam, the industry's first certification examinations for development professionals. Additionally, SPI Dynamics and SANS have teamed to deliver the Software Security Series, a 40-city educational workshop series focused on secure coding techniques and best practices for the developer community. These initiatives will help establish a needed baseline for the developer community.

Educating developers on building secure code is key to solving the intricate security implications of the evolving web with increasingly dynamic and rich applications that take advantage of the latest development technologies such as AJAX. In addition to ongoing educational events, informational webcasts and expert articles, SPI Dynamics has introduced products throughout the development lifecycle that natively integrate with development platforms to conduct application security testing as an integrated and non-disruptive part of existing software development processes.

SPI Dynamics has been an early participant in discussions with SANS on best practices and standards for the development community, and has contributed significant resources towards the overall program initiatives, including a majority of the content to the first GSSP certification examinations for programming professionals that SANS has in development. The examinations cover four specific programming language suites: C/C++, Java/JSP, Perl/PHP, and .NET/ASP, and are designed to enable reliable measurements of technical proficiency and expertise in identifying and correcting the common programming errors that lead to security vulnerabilities. SPI Dynamics will be participating in the SANS launch event on March 26th in Washington, D.C. to announce the certification examinations for programming professionals and their overall developer security program. Several SPI Dynamics' customers will also be participating in a panel discussion at the event.

Security issues in application software are nothing new and have been prevalent since software was introduced. However, the new technologies of today can amplify the common insecurities found in applications not built with security in mind. The 40-city joint workshop series hosted by the SANS Institute and SPI Dynamics is dedicated to educating developers on how to develop secure software, and also provides a hacker's perspective while covering the widespread attack techniques used today to maliciously compromise critical applications.

Working with more than 950 customers, the largest customer base in the application security market, SPI Dynamics has developed the most innovative solutions that address the growing need to simplify security testing and incorporate it as an integrated function of the overall software development lifecycle. These award-winning solutions also enable security professionals, QA testers, and developers to work together to verify compliance with over 22 security policies like SOX, HIPAA and PCI.

Share or bookmarklet this web page at: