Topic: Security and the SDLC: A Management Perspective
Mr. Wlosinski will be covering the five phases of the System Development Life Cycle (SDLC) from a management perspective. Topics to be covered include significant change determination; risk assessment; governance; system interconnection security agreements; testing; system security plans; contingency planning (and the business impact analysis); security control monitoring; roles and responsibilities; training; review gates/boards; security artifacts and documentation; and system retirement and decommissioning planning. Attendees will learn about best practices from a variety of sources. The presentation is intended for IT security management, security support staff, project managers, and IT security professionals.
Larry G. Wlosinski, CISSP, CAP, CCSP, CISM, CISA, CRISC, CBCP, CDP, ITIL v3
Mr. Wlosinski is a Senior Associate at the Veris Group, LLC. He has over 41 years of experience, with the last 16+ dedicated to information security. His commercial experience includes insurance, interstate and international banking, and collections. Federal government experience includes EPA, NIH, CMS, DOJ, DHS, DOE, DIA, NOAA, and SSA. He has also been a speaker on a variety of topics at federal and professional conferences and at local professional security organizations; has written many articles and whitepapers; and given classes on many IT security topics.
CPE Value: 2CPEs