The essence of “Security by Design”

private

With great new possibilities come great new security and privacy challenges and threats for the financial sector. Systems are increasingly connected, increasingly complex, increasingly open and increasingly under threat of criminals and cyber vandalists. The proof of this can be read in the papers almost every day. The growth of financial high-tech is faster than ever, bringing new security possibilities and issues, and at the same time there is still a large base of legacy that is not going anywhere, also bringing challenges with respect to security risks.

Software plays a large role in these threats because it is central in the processing of information. It is with good reason that in the new “PCI DSS 3.2” it is now explicitly required that the source code should be reviewed by experts prior to releases. This is essential to really find the weaknesses buried in these systems that cannot be found using the regular security tests. These weaknesses require 100 times more effort to fix than to build it right in the first place, which is why it is so important to practice “security by design” as early as possible in the development process.

New privacy regulations, especially the GDPR, require that – apart from securing personal data – the way of processing this data also needs close attention. Regulation fines are higher than ever.

In this key track session, we will take you through observations we made during the many software security & privacy assessments that we performed, to show you and share with you the pitfalls of unconscious incompetence. Next we will analyze why we are seeing the same mistakes over and over again. This allows us to address the root causes to come towards a ‘set of steps’ that is essential for your daily practice to secure your business and your clients interest and trust.

Related interesting reads:
1. Web – Escape from legacy mountain

2. eBook – The Seven Deadly Sins of Insecure Mobile Apps

  • @EuroPaySummit

    European Pymt Summit European Pymt Summit @EuroPaySummit Have you seen our updated speaker lineup? We look forward to welcoming payment professionals at our Summit soon, wh… https://t.co/tuTcOtNWTW 1 day ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @cbpaymentsnews: Putting the finishing touches on the Feb issue, out Monday! Stay tuned for a faster payments update from Connie Theien,… 2 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit .@Adyen launches #openbanking-powered payment method https://t.co/KD31leaeMr via @Finextra 2 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit @FintechCH Thank you for sharing and your support! 3 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @phielkema: Today PSD2 enters into force in the Netherlands. What does this mean for consumers, retailers, on-line shops, banks and fint… 4 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @BandwidthRec: #Regulatory “weathervanes” to prove #blockchain’s maturity https://t.co/D8hl4qpVkh 4 days ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @ThePaypers: .@swiftcommunity to open #KYC platform to #corporates https://t.co/yWq58TOkDF #financialinstitutions #banks #security 1 week ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @ThePaypers: .@BurgerKing King Russia has partnered with @WebMoneySystem to integrate QR-code #payments for customers https://t.co/enqJT 1 week ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @ThePaypers: .@AntFinancial acquires UK-based payments company @WorldFirstLtd https://t.co/JvGDUlrp6t 1 week ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @cbpaymentsnews: Another step forward for the Kingdom's Vision 2030 - many services now being tested in the sandbox environment includin… 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit RT @cbpaymentsnews: Must-read: a new Bank of Korea paper examines the financial stability implications of CBDCs https://t.co/OFN2meUdUr #ba 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit Germany’s Federal Cartel Office prohibits @facebook from combining user #data from different sources https://t.co/LFHXi16Bth 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit #OpenBanking Platform @Tink Scores €56M in New Funding https://t.co/YwMpvOviz5 2 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit ICO to investigate @Google over #GDPR violations https://t.co/3yhlbbHahz 3 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit .@Facebook Makes First #Blockchain Acquisition With @Chainspace https://t.co/5lZYgk3RlT via @Cheddar 3 weeks ago
    European Pymt Summit European Pymt Summit @EuroPaySummit #Banks Allowed to Delay Implementation of #epayment User Protection Guidelines to 30 June 2019 in Singapore https://t.co/2LVjEL9vFh 3 weeks ago
  • Also interesting
    Julian Sawyer, Starling Bank: "Innovation will be driven by organisations focusing on customer needs"
    Written on 11 February '19 by
    READ MORE
    Program & Speaker Updates | EPS
    Written on 27 January '19 by
    READ MORE
    Register Early for 20% Discount
    Written on 12 November '18 by
    READ MORE
  • News