To be an effective security warrior today, you have to think through how modern attackers think and operate. Failing to do so could be incredibly costly, not just for the organization, but also for the security professional themselves. And it’s not only thinking about how they operate but acting on it to ensure the right controls and processes are in place to thwart any attacks. This is a topic that Ted Harrington, keynote speaker and executive partner at Independent Security Evaluators, excels at.
“We know how to secure applications,” Harrington told InfoSec Insider during a recent interview shot at the InfoSec World Conference & Expo. “While we know what to do, organizations still have a tremendous time doing it. How we got to that state is to some extent a mystery.”
There are a lot of business drivers that push for secrecy and speed to market, and that could be part of the equation, Harrington added.
In the full video interview below, Harrington provides his take on application security and shares tips on the subject with up-and-coming security leaders.