AppSec USA 2017 has ended
Back To Schedule
Thursday, September 21 • 2:30pm - 3:15pm
Embedding GDPR into the SDLC

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

We will map the GDPR requirements to the typical software security activities as part of a Secure Development Lifecycle. This will cover:

• How to include the DPO as part of the software security governance?

• Providing privacy awareness training to developers

• Including privacy in secure coding guidelines

• Including a Privacy Impact Analysis as part of software risk analysis.

• Mapping the GDPR to software security requirements

• Applying privacy by design on software architecture

• Including privacy threats in software threat modeling

• Including a privacy security checklist as part of software security testing

• Applying GDPR specific breach notification requirements on the vulnerability and incident management processes

The talk will focus on practical implementation aspects and demonstrations of real life use cases encountered in our software security and privacy projects.

More details can be provided in a detailed submission.


Thursday September 21, 2017 2:30pm - 3:15pm EDT
Coronado K