-Automated Static Analysis Program Rollout-Application Vulnerability Assessment
-Secure Development Assistance
-Building Security Teams
Automated Static Analysis Program Rollout
-HP Fortify, AppScan Source
Application Vulnerability Assessment
-Combined Code Review and Penetration Testing
Secure Development Assistance
-Architectural & Design Review
Building Security Teams
Principle Consultant: Mike Fauzy
Certified Information System Security Professional (CISSP) with a background in ecommerce development. He has 16 years of combined experience in Java development and Information Security. Clients have included government agencies and companies in the financial, manufacturing and health care industries.
Mike has significant experience helping organizations build effective and practical security controls into their Software Development Lifecycles (SDLC).
This includes the implementation of process improvements to help ensure that applications are built from the ground up with security in mind and to help ensure that security defects are identified and corrected earlier in the SDLC when the cost of remediation is low.
This also includes a strong emphasis on the human aspect of application security - building security teams, hiring the right people, and training and mentoring developers and security personnel.
He has assessed the security of a wide variety of applications, with expertise in penetration testing as well as source code review, architecture review, and design review. With seven years of experience working as a software developer, Mike combines his development background with his security training to provide clients with targeted, practical advice on how to improve the security of their applications.
He also competes in hacking competiations and travels the world as a digital nomad.
Contact Us Copyright 2007-2015 All rights reserved