Privacy Awareness Training
Improving software security requires the integration of best practices throughout your software development lifecycle. Begin by providing your development professionals with sound fundamentals to understand what they should be aware of during the requirements and design phases of your project.
An analogy to a building architect is fitting here. If an architect can find a defect in the design stage of the project, it can be corrected with just an eraser, however if It is found when the project is complete, a wrecking ball may be needed.
According to the IBM Systems Sciences Institute, the relative cost to repair a software defect once an application has been deployed is up to 100 times greater than repairing the defect during software design. In effect, a defect that would have only cost $1,000 to repair while the design process was still underway, would cost as much as $100,000 to repair after the product is released into production.
This four hour Privacy Awareness Seminar for Software Development Teams can cover the following topics:
Introduction of your Compliance or Privacy Officer, and IT Sponsor
Goals of the Seminar
Regulations, including specific regulations your organization is required to follow
Are you following your published Privacy Policy?
Standards (PCI, OWASP, ISO 27002, etc)
Will the best security ensure Privacy?
Sensitive Data Collection and Storage
Secure Development Lifecycle Design Principles regarding data reduction (masking, truncation) and minimization
Use of Tokens or Data Proxies
Hashing
Securing Sensitive Data
Web Transactions
Look for Hidden PII
- Automated Testing tools and Data Leak Protection
Next Steps
Audience: Software developers, architects, project managers, testers, technical and development managers.
View our Privacy Awareness Seminar Brochure here