Home > ASQ Washington, DC &... > Special Interest Groups > Software SIG >> Related Links | Capers Jones stats Printable Version Tell a friend
Software SIG Next Meeting
“Injecting Security into SDLC”
How to Incorporate a
Security Development Lifecycle
into the Software Development Lifecycle
Presented by Shahid Shah
Tuesday February 24, 2015
6:30 PM – Networking and Pizza
7:00 – 8:00 PM – Program
There is no cost to attend at McLean, Silver Spring
Experienced engineers intuitively recognize that security is an emergent property of our software and especially of complex systems. Just like we can’t add reliability or quality at the end of the process, we know that security must be fully integrated into the system and software development lifecycles. Saying it’s important and actually adjusting our engineering processes to properly accommodate security are two different things – it requires forethought, discipline, and tooling. Join master systems architect, Shahid N. Shah, who’s spent his career building high quality safety-critical software and solutions for several industries, as he describes the new CISQ Quality Standard, the Microsoft Security Development Lifecycle (SDL), and how to properly integrate cybersecurity and data privacy into an agile Software Development Lifecycle (SDLC).
Shahid Shah is an award-winning Government 2.0, Health IT, Medical Device Integration software expert with over 25 years of technology strategy, software engineering, entrepreneurship, speaking, and writing experience. For more information, please see ShahidShah.com
Software Special Interest Group (SSIG)
The purpose of the Software Special Interest Group is to provide software quality professionals and software professionals interested in quality with an opportunity for growth and exchange of ideas with other software professionals, and to facilitate growth in the number and expertise of the ASQ membership.
- Arrange meetings (currently monthly) at a convenient time and place.
- Provide a diversity of speaker topics within the general heading of software quality.
- Provide knowledgeable speakers from the professional and/or academic worlds.
- Keep in touch with and respond to the professional communities desires for the meetings.
- Reach out to students, who will soon enter the software profession.
- Disseminate information about: ASQ membership, the Software Division, certification, and training opportunities.
For more information about Section 509's
Software Special Interest Group Contact T. Scott
Past Software SIG Presentations
“If It Passes Test, It Must Be OK” Common Misconceptions and The Immutable Laws of Software Development presented by Girish Seshagiri 1/27/2015
Quality Testing Challenges with Big
Data presented by Michael Chapiro
Risk Management 103: Risk Metrics Part 2 - Metrics Applications presented by Mike Helton 10/28/2014
Management 103: Risk Metrics Part 1 - Measuring
Risk and the Risk Process
presented by Mike Helton
The Discipline of Software Engineering presented by Mark Doernhoefer of MITRE 08/26/2014
Applying Process Mining to IT Big Data presented by Richard Eng of MITRE 07/22/2014
A Rules Engine Experiment: Lessons Learned on When and How to use a Rules-Based Solution presented by Cris Hutto of MITRE 06/24/2014
Using Agile Principles to Deliver Real Business Value at Scale presented by: Mark Shima and Joseph Hilger 5/27/2014
Building a Software Assurance Road-map and Using It Effectively presented by Robert Martin of MITRE 04/22/2014
Open Source Software and Government presented by David Wheeler of the Institute for Defense Analysis 02/25/2014
Get the Requirements Right...the First Time... presented by Wayne Beekman of Information Concepts 01/28/2014
Success with Enterprise Architecture presented by Phil Homan 12/17/2013
Development of a Configuration Management Standard for a Government Agency presented by Ron Perrella and Russ Roseman 10/29/2013
Leadership and Career Development presented by Joe Ludford 9/24/2013
Model-based Architecture and Engineering presented by Victor Harrison 8/27/2013
Risk Management 102 presented by Mike Helton 7/23/2013
Open Stack presented by Pat Holben 6/25/2013
Requirements Metrics for Requirements Statements presented by Chao Y. Din 5/28/2013
High Maturity Practices and Lifetime Warranty Against Software Defects presented by Girish Seshagiri 4/23/2013
The Rise of Big Data and Data Science presented by Donald Miner 3/26/2013
Risk Management presented by Al Florence 2/26/2013
Near Future of Automated Software Testing presented by Elfriede Dustin 11/29/2012
Software Security Assurance: Enabling Security Automation and Software Supply Chain Risk Management Presented by Joe Jarzombek of DHS 8/30/2012 audio file
Requirements-Management Requirements -- Requistite Doors to Success Presented by Alfred Kromholz of MITRE 7/24/2012 (No slides or audio file available)
Systems Engineering Management Process (SEMP) Presented by Jim Todd of DRC 6/26/2012 (The link is to the audio recording. No slides were used.)
Software Assurance Metrics and Tool Evaluation (SAMATE) Overview Presented by Tim Boland of NIST 5/29/2012.
Exposing Security Risks for Commercial Mobile Devices (CMDs) Presented by Jeff Voas of NIST and Angelos Stavrou of GMU 3/27/2012. audio file
Understanding How the Bad Guys Attack Your Software: CAPEC Presented by Sean Barnum of MITRE 2/21/2012. audio file
Building Watson--An Overview of the DeepQA Project Presented by David A. Ferrucci of IBM 1/24/2012 (slides are not available).
Leveraging Semantic Web Technologies for Improved Decision Making Presented by Samuel Chance 11/29/2011. rescheduled from earlier audio file
Transforming Technical Leads into Effective project Managers Presented by Rita Hadden 9/20/2011. audio file
Leveraging Semantic Web Technologies for Improved Decision Making Presented by Samuel Chance 8/23/2011. meeting canceled
Software Quality in 2011: A Survey of the State of the Art Presented by Capers Jones 7/26/2011.
Overview of the NIST Risk Management Framework as described in SP 800-37 Presented by Lance Kelson 5/24/2011. audio file 1