Security by Design: Continuous Delivery, Integration, and Audit

Session

We are interrupting our summer break to take advantage of a visit by Nathan Gibson, Information Security & Privacy Professional at AllState.

Nathan will be giving an session on maintaining, analyzing, confirming, and reporting on the status of required information security, compliance, and privacy controls is a difficult and significant task for software and security engineers. This talk discusses real world applications and examples for integrating Security by Design with your Continuous Deployment environment. Tools include the use of Jenkins, Chef, Metasploit, Fuzzers, vulnerability scanning (Nexpose), test driven development and system hardening.

Refreshments will be provided, all are welcome. This event will contain the one session by Nathan, and there will be time for questions and discussions aftewards.

Nathan Gibson

Nathan is an Information Security & Privacy Professional who specializes in continuous integration, inspection, and deployment environments. He brings information security and risk management concepts into the product portfolio realization pipeline and embeds the behavior naturally into design, develop, test, and refactor pipelines as a member of the technical team.

Nathan enjoys coding, studying software development methodologies, and keeping up to date on the latest information security trends and methodologies.

Nathan’s professional qualifications include over 15 years experience in the industry where he has successfully managed secure information systems in dynamic, multinational environments. Nathan is experienced in all aspects of enterprise wide security with tasks ranging from governance and risk assessments through writing code and configuring systems.

To compliment this background, Nathan maintains numerous certifications and academic training covering everything from governance to cryptography. He holds a Masters In Information Security and a Bachelors in Computer Science.