Removing insecurity from outsourced development




IBM Rational software podcast series show

Summary: Especially in tough economic times or where resources with requisite security skills are few, companies turn towards outsourcing for software development. Hear from Security Executive, Jack Danahy, of IBM's Rational Software Group explain why and how to hold your outsourced partners accountable to delivering secure code. Not only should outsourcers be held to a specific standard for quality but also a standard for security thresholds so that recipients of the final application can be assured that the code vulnerabilities are reduced and risk mitigated. Learn how to set expectations and communicate effectively with your outsourced partners. Learn why even though an application performs as it is intended, there could be inherent vulnerabilities buried in the code that leaves the application at risk. Learn how you can develop processes that ensure that in-house, outsourced or legacy applications can be held to the same standard of security excellence and best practices.