The essence of “Security by Design”

private

With great new possibilities come great new security and privacy challenges and threats for the financial sector. Systems are increasingly connected, increasingly complex, increasingly open and increasingly under threat of criminals and cyber vandalists. The proof of this can be read in the papers almost every day. The growth of financial high-tech is faster than ever, bringing new security possibilities and issues, and at the same time there is still a large base of legacy that is not going anywhere, also bringing challenges with respect to security risks.

Software plays a large role in these threats because it is central in the processing of information. It is with good reason that in the new “PCI DSS 3.2” it is now explicitly required that the source code should be reviewed by experts prior to releases. This is essential to really find the weaknesses buried in these systems that cannot be found using the regular security tests. These weaknesses require 100 times more effort to fix than to build it right in the first place, which is why it is so important to practice “security by design” as early as possible in the development process.

New privacy regulations, especially the GDPR, require that – apart from securing personal data – the way of processing this data also needs close attention. Regulation fines are higher than ever.

In this key track session, we will take you through observations we made during the many software security & privacy assessments that we performed, to show you and share with you the pitfalls of unconscious incompetence. Next we will analyze why we are seeing the same mistakes over and over again. This allows us to address the root causes to come towards a ‘set of steps’ that is essential for your daily practice to secure your business and your clients interest and trust.

Related interesting reads:
1. Web – Escape from legacy mountain

2. eBook – The Seven Deadly Sins of Insecure Mobile Apps

  • @EuroPaySummit

    European Pymt Summit European Pymt Summit @EuroPaySummit "The most striking thing we found during our attendance at the #europeanpaymentsummit was the fact that regulatory… https://t.co/FxCSh0XvLs 7 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @PaymentCounsel: Money 2020: World FinTech Report 2019 #OpenBanking has yet to reach maturity, according to #WFTR2019. The financial se… 1 week ago
    European Pymt Summit European Pymt Summit @EuroPaySummit PayU acquires Turkish startup @iyzico_com #digitalpayments #fintech https://t.co/GCBAUcaNvC 1 week ago
    European Pymt Summit European Pymt Summit @EuroPaySummit EU to Increase Access to High-Quality Data for #Blockchain, #AI Projects https://t.co/ROfiA7X6hR via @cointelegraph 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @KYC_Ltd: #ThrowbackThursday to our win as "Best RegTech Provider" in the #FlorinAwards at the @EuroPaySummit! On our blog, we take a cl… 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @PaymentCounsel: Whitepaper: One year after #PSD2 What has happened since PSD2 and #GDPR were introduced, and why financial services fi… 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Always a pleasure to catch up with leading minds in #fintech during our #europeanpaymentsummit editions. @dgwbirch,… https://t.co/uIKHUrZJrT 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @PaymentCounsel: Consumers are wary of #bankingtechnology Rate of consumers adoption of latest #banking technology does not necessarily… 3 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @PaymentCounsel: 'Open Banking and Innovation: Let's Not Wait for PSD3!' Read my new article on the Payments Guru website: https://t.co 3 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @CurrencyResearc: Standardization of data is the basis of success for (SWIFT, Visa, Mastercard). Standardization is critical for moderni… 5 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @Finextra: Company announcement: HKMA grants four more virtual banking licences https://t.co/kphM1HMOgh #fintech 6 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @ccgroup: #ConciseComments: Facebook selects London as the hub to build WhatsApp's mobile payment feature via https://t.co/zdN7HSuSpx 6 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @KYC_Ltd: The central topic at the @EuroPaySummit last month was without a doubt #PSD2 & its #SCA requirements. On our blog, we take a c… 6 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @ccgroup: Our head of #fintech @prmonkeyman visited The Hague last week for the @EuroPaySummit and he has written about the key topics c… 7 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @PaymentCounsel: #Fintech firms form association to fight #PSD2 corner The European Third-Party Provider Association (#ETPPA) formalise… 7 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @AToucinho: Découvrez mon dernier article : A La Haye, aux Pays-Bas, l’Europe des paiements se conjugue avec l’international https://t.c 7 weeks ago
  • Also interesting
    Alignment of Real-Time Payments Across International Borders
    Written on 22 April '19 by
    READ MORE
    Meet the Florin Awards Europe 2019 Nominees
    Written on 17 April '19 by
    READ MORE
    David Birch, Consult Hyperion: "We need national strategies to manage the transition to cashlessness"
    Written on 16 April '19 by
    READ MORE
  • News