The Advisory Board was established to recommend ways to create awareness about the problem o f insecure software and help organizations infuse security into the software development lifecycle. The board consists of 14 software lifecycle professionals of similar seniority from the ranks of leading business, public, and non-government organizations around the world, including:
The board held its inaugural meeting Nov. 19 in Orlando, Fla. where they discussed the state of secure software and made recommendations on, among other topics, how to gain support for and overcome the problems caused by the proliferation of insecure software. Several members hold (ISC)’s Certified Secure Software Lifecycle Professional (CSSLP') certification. The CSSLP, which recently became accredited under ANSI/ISO/IEC Standard 17024, was created to stem the proliferation of software vulnerabilities by establishing best practices and validating an individual’s competency in addressing security issues throughout the software lifecycle.
"Software vulnerabilities are one of the most pressing issues in security today with 80 percent of attacks occurring at the application layer, and we are confident this group of elite software and security professionals will bring valuable insights and ideas as to how we as a community can have an impact on this issue," said W. Hord Tipton, CISSP-ISSEP, CAP, CISA, executive director of (ISC).
The (ISC) ASAB will meet virtually on a quarterly basis and in-person annually. (ISC)2 has existing advisory boards for the Americas, U.S. federal government, Europe and Asia-Pacific.
Mike Kilroy or Juliette Mutzke
Maples Communications, Inc.