The essence of “Security by Design”

private

With great new possibilities come great new security and privacy challenges and threats for the financial sector. Systems are increasingly connected, increasingly complex, increasingly open and increasingly under threat of criminals and cyber vandalists. The proof of this can be read in the papers almost every day. The growth of financial high-tech is faster than ever, bringing new security possibilities and issues, and at the same time there is still a large base of legacy that is not going anywhere, also bringing challenges with respect to security risks.

Software plays a large role in these threats because it is central in the processing of information. It is with good reason that in the new “PCI DSS 3.2” it is now explicitly required that the source code should be reviewed by experts prior to releases. This is essential to really find the weaknesses buried in these systems that cannot be found using the regular security tests. These weaknesses require 100 times more effort to fix than to build it right in the first place, which is why it is so important to practice “security by design” as early as possible in the development process.

New privacy regulations, especially the GDPR, require that – apart from securing personal data – the way of processing this data also needs close attention. Regulation fines are higher than ever.

In this key track session, we will take you through observations we made during the many software security & privacy assessments that we performed, to show you and share with you the pitfalls of unconscious incompetence. Next we will analyze why we are seeing the same mistakes over and over again. This allows us to address the root causes to come towards a ‘set of steps’ that is essential for your daily practice to secure your business and your clients interest and trust.

Related interesting reads:
1. Web – Escape from legacy mountain

2. eBook – The Seven Deadly Sins of Insecure Mobile Apps

  • @EuroPaySummit

    European Pymt Summit European Pymt Summit @EuroPaySummit And it's a wrap!!! Thank you everyone who came!!! https://t.co/cDsOMHiThj 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Closing keynote on #australia payment landscape by @victoriajane #eps2k17 https://t.co/znX32adaUB 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Deep diving on @Alipay & innovations from china with @chinafintech @DavidKChuenLEE https://t.co/l55WXQMF5Y 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit @iDeal_Status demo on #iDin solution at #eps2k17 https://t.co/vm4udvcrH1 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit @vikasmunshi on architecture against #fraud #eps2k17 https://t.co/24nmHBo4qZ 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Super cool! @XimedesSoftware https://t.co/EUDxgvhCJp 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit We r in the news! https://t.co/wYEnJ0gl0V 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @Finextra: PSD2 dominates discussion on day one of European Payments Summit https://t.co/kyuUPPkHM3 #fintech 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Now onto #identity discussion in Europe with @douwelycklama @ServidaAndrea gerardhartsink @GLEIF https://t.co/4W3gVzO410 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit @jgrantindc #Identity is too big for anyone to solve - shd be a coalition of the willing - government telco corporations #eps2k17 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @alina_marginean: kick off second day #eps2k17 @endava Identity as the great enabler https://t.co/oeyCVzzceC 1 month ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @hdilorenzo84: Jeremy Grant @EuroPaySummit: "Authentication is getting easier, but identity proofing is getting harder!" #eps2k17 1 month ago
  • Also interesting
    Keynote on Identity & Security Brief at EPS
    Written on 21 November '17 by
    READ MORE
    EPS-Fintech Security Fair & Awards
    Written on 6 November '17 by
    READ MORE
    20% Early Bird Discount
    Written on 6 November '17 by
    READ MORE
  • News