|By Business Wire||
|January 22, 2013 08:34 AM EST||
Security Innovation, an authority in application security assessment and training, announced today that Jason Taylor, Chief Technology Officer, was recognized as Microsoft® Most Valuable Professionals (MVP) in the category of Developer Security. The Microsoft MVP Award is an annual award that recognizes active and credible experts who willingly share their high quality, real world expertise with users and the Microsoft Communities.
Individuals are nominated for the Microsoft MVP Award by their peers or by Microsoft employees, and each nominee's contributions are then compared to the other candidates' contributions for the same year. MVPs reach out and contribute to online and offline communities through a broad range of channels: online forums, wikis, and technical guides; and their own podcasts, Web sites and blogs. Mr. Taylor is a regular external reviewer, contributor and primary author for the Microsoft Patterns & Practices security guidance. He’s been a content contributor to numerous Microsoft online properties for cloud security, software security, and regulatory compliance in the form of articles, videos, whitepapers, eLearning, etc. He has co-authored five Patterns & Practices Guides, and over 100 Patterns & Practices articles.
“The Microsoft MVP Award provides us the unique opportunity to celebrate and honor Jason’s significant contributions and say ‘Thank you for your technical leadership’,” said Mike Hickman, Director of Community Engagement, Microsoft Corporation.
“Security Innovation has been conducting cutting-edge research in the field of application security for more than ten years and is continually developing, refining, and sharing this research with the community at large,” said Ed Adams, CEO, Security Innovation. “Jason is at the core of many of these initiatives; he shares a true passion for secure software development. His willingness and desire to share his expertise with the technical community has undoubtedly helped thousands of individuals to understand how to reduce application security risk.”
Mr. Taylor’s accomplishments while previously serving in various leadership roles at Microsoft are numerous. With Loren Kohnfelder, he co-created STRIDE, an industry recognized vulnerability classification system and DREAD, a technique to qualify risk. He grew the Internet Explorer security test team from a solitary operation to the leading application security test team at Microsoft. Later, he built the Test Model Toolkit, which won a Best Practice Award and led to an in-person briefing with Bill Gates. Jason’s long experience in application security has been incorporated into Security Innovation’s application assessment methodologies and eLearning training platform. Mr. Taylor was the visionary and designer of courses such as “Introduction to Threat Modeling” and “Creating Secure Code for ASP.Net,” which have been taught in many of the world's largest technology organizations.
About Jason Taylor
Mr. Taylor leads the strategic direction for all technology initiatives and manages world-class development teams for the company's product lines. He has spent his career focused on application development and testing with a primary focus on application security. His unrivaled understanding of application behavior provided the impetus for Security Innovation’s industry pioneering fault injection tool, Holodeck Enterprise Edition, and critical enhancements to the company’s internal testing and development tools.
Mr. Taylor has published and co-authored several whitepapers, guides and books including:
- Team Development with Visual Studio Team Foundation Server with J.D. Meier of Microsoft
- Improving Web Services Security with Microsoft Patterns & Practices
- Application Architecture Guide 2.0 with Microsoft Patterns & Practices
- Security Engineering Explained with Microsoft Patterns & Practices
- Security Threats: Risks, Protection & Limitations for CIO Update
Security Innovation has established unparalleled expertise across Microsoft platforms and development environments. The two companies maintain a lengthy and successful relationship, collaborating on numerous application security initiatives, code reviews, penetration tests, development and research projects:
- More than 50 direct engagements with various Microsoft groups that include penetration testing, code reviews, research/competitive analysis, customer-facing guidance creation, custom development and training.
- Several research projects that received high visibility and acclaim, including direct briefing to Bill Gates
- A.C.E. certified as a third party penetration test organization
- VisualStudio Integration Partner
- Member of the Microsoft Security Development Lifecycle (SDL) Pro Network, and close relationship with Microsoft Security Engineering Group for SDL-related work.
- Co-authored 5 Patterns & Practices Guides
About Security Innovation
Security Innovation is an established leader in the application security space and offers solutions based on the three pillars of the Software Development Lifecycle (SDLC): standards, education and assessment. On a mission to help eliminate the root cause of most data breaches – insecure software applications – Security Innovation helps organizations build internal expertise, uncover critical vulnerabilities and integrate security into their software development lifecycle.
The company’s flagship products include TeamMentor, “out of the box” secure development standards and TeamProfessor, the industry’s largest library of application security eLearning courses. The TeamProfessor eLearning platform serves as the foundation for security awareness and application vulnerability assessment, remediation and prevention skills development. It offers more than 45 courses and over 100 hours of real-world content, with popular topics including Mobile Security (awareness and secure development for Android, iPhone, and Blackberry), secure coding (.NET, Java, C/C++, C#, PHP, Oracle), PCI-DSS and OWASP.
WebRTC is about the data channel as much as about video and audio conferencing. However, basically all commercial WebRTC applications have been built with a focus on audio and video. The handling of “data” has been limited to text chat and file download – all other data sharing seems to end with screensharing. What is holding back a more intensive use of peer-to-peer data? In her session at @ThingsExpo, Dr Silvia Pfeiffer, WebRTC Applications Team Lead at National ICT Australia, will look at different existing uses of peer-to-peer data sharing and how it can become useful in a live session to...
Oct. 8, 2015 12:00 PM EDT Reads: 597
As a company adopts a DevOps approach to software development, what are key things that both the Dev and Ops side of the business must keep in mind to ensure effective continuous delivery? In his session at DevOps Summit, Mark Hydar, Head of DevOps, Ericsson TV Platforms, will share best practices and provide helpful tips for Ops teams to adopt an open line of communication with the development side of the house to ensure success between the two sides.
Oct. 8, 2015 12:00 PM EDT Reads: 569
NHK, Japan Broadcasting, will feature the upcoming @ThingsExpo Silicon Valley in a special 'Internet of Things' and smart technology documentary that will be filmed on the expo floor between November 3 to 5, 2015, in Santa Clara. NHK is the sole public TV network in Japan equivalent to the BBC in the UK and the largest in Asia with many award-winning science and technology programs. Japanese TV is producing a documentary about IoT and Smart technology and will be covering @ThingsExpo Silicon Valley. The program, to be aired during the peak viewership season of the year, will have a major impac...
Oct. 8, 2015 12:00 PM EDT Reads: 249
There are so many tools and techniques for data analytics that even for a data scientist the choices, possible systems, and even the types of data can be daunting. In his session at @ThingsExpo, Chris Harrold, Global CTO for Big Data Solutions for EMC Corporation, will show how to perform a simple, but meaningful analysis of social sentiment data using freely available tools that take only minutes to download and install. Participants will get the download information, scripts, and complete end-to-end walkthrough of the analysis from start to finish. Participants will also be given the pract...
Oct. 8, 2015 11:45 AM EDT Reads: 200
SYS-CON Events announced today that IBM Cloud Data Services has been named “Bronze Sponsor” of SYS-CON's 17th Cloud Expo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. IBM Cloud Data Services offers a portfolio of integrated, best-of-breed cloud data services for developers focused on mobile computing and analytics use cases.
Oct. 8, 2015 11:00 AM EDT Reads: 723
The Internet of Things (IoT) is growing rapidly by extending current technologies, products and networks. By 2020, Cisco estimates there will be 50 billion connected devices. Gartner has forecast revenues of over $300 billion, just to IoT suppliers. Now is the time to figure out how you’ll make money – not just create innovative products. With hundreds of new products and companies jumping into the IoT fray every month, there’s no shortage of innovation. Despite this, McKinsey/VisionMobile data shows "less than 10 percent of IoT developers are making enough to support a reasonably sized team....
Oct. 8, 2015 10:30 AM EDT
The enterprise is being consumerized, and the consumer is being enterprised. Moore's Law does not matter anymore, the future belongs to business virtualization powered by invisible service architecture, powered by hyperscale and hyperconvergence, and facilitated by vertical streaming and horizontal scaling and consolidation. Both buyers and sellers want instant results, and from paperwork to paperless to mindless is the ultimate goal for any seamless transaction. The sweetest sweet spot in innovation is automation. The most painful pain point for any business is the mismatch between supplies a...
Oct. 8, 2015 10:30 AM EDT Reads: 175
The buzz continues for cloud, data analytics and the Internet of Things (IoT) and their collective impact across all industries. But a new conversation is emerging - how do companies use industry disruption and technology enablers to lead in markets undergoing change, uncertainty and ambiguity? Organizations of all sizes need to evolve and transform, often under massive pressure, as industry lines blur and merge and traditional business models are assaulted and turned upside down. In this new data-driven world, marketplaces reign supreme while interoperability, APIs and applications deliver un...
Oct. 8, 2015 10:30 AM EDT Reads: 199
"Matrix is an ambitious open standard and implementation that's set up to break down the fragmentation problems that exist in IP messaging and VoIP communication," explained John Woolf, Technical Evangelist at Matrix, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Oct. 8, 2015 07:00 AM EDT Reads: 5,863
WebRTC has had a real tough three or four years, and so have those working with it. Only a few short years ago, the development world were excited about WebRTC and proclaiming how awesome it was. You might have played with the technology a couple of years ago, only to find the extra infrastructure requirements were painful to implement and poorly documented. This probably left a bitter taste in your mouth, especially when things went wrong.
Oct. 8, 2015 06:00 AM EDT Reads: 756
The broad selection of hardware, the rapid evolution of operating systems and the time-to-market for mobile apps has been so rapid that new challenges for developers and engineers arise every day. Security, testing, hosting, and other metrics have to be considered through the process. In his session at Big Data Expo, Walter Maguire, Chief Field Technologist, HP Big Data Group, at Hewlett-Packard, will discuss the challenges faced by developers and a composite Big Data applications builder, focusing on how to help solve the problems that developers are continuously battling.
Oct. 8, 2015 04:00 AM EDT Reads: 483
Nowadays, a large number of sensors and devices are connected to the network. Leading-edge IoT technologies integrate various types of sensor data to create a new value for several business decision scenarios. The transparent cloud is a model of a new IoT emergence service platform. Many service providers store and access various types of sensor data in order to create and find out new business values by integrating such data.
Oct. 8, 2015 04:00 AM EDT Reads: 540
WebRTC converts the entire network into a ubiquitous communications cloud thereby connecting anytime, anywhere through any point. In his session at WebRTC Summit,, Mark Castleman, EIR at Bell Labs and Head of Future X Labs, will discuss how the transformational nature of communications is achieved through the democratizing force of WebRTC. WebRTC is doing for voice what HTML did for web content.
Oct. 8, 2015 03:00 AM EDT Reads: 1,372
Who are you? How do you introduce yourself? Do you use a name, or do you greet a friend by the last four digits of his social security number? Assuming you don’t, why are we content to associate our identity with 10 random digits assigned by our phone company? Identity is an issue that affects everyone, but as individuals we don’t spend a lot of time thinking about it. In his session at @ThingsExpo, Ben Klang, Founder & President of Mojo Lingo, will discuss the impact of technology on identity. Should we federate, or not? How should identity be secured? Who owns the identity? How is identity ...
Oct. 8, 2015 03:00 AM EDT Reads: 433
Developing software for the Internet of Things (IoT) comes with its own set of challenges. Security, privacy, and unified standards are a few key issues. In addition, each IoT product is comprised of at least three separate application components: the software embedded in the device, the backend big-data service, and the mobile application for the end user's controls. Each component is developed by a different team, using different technologies and practices, and deployed to a different stack/target - this makes the integration of these separate pipelines and the coordination of software upd...
Oct. 8, 2015 03:00 AM EDT Reads: 279
WebRTC services have already permeated corporate communications in the form of videoconferencing solutions. However, WebRTC has the potential of going beyond and catalyzing a new class of services providing more than calls with capabilities such as mass-scale real-time media broadcasting, enriched and augmented video, person-to-machine and machine-to-machine communications. In his session at @ThingsExpo, Luis Lopez, CEO of Kurento, will introduce the technologies required for implementing these ideas and some early experiments performed in the Kurento open source software community in areas ...
Oct. 8, 2015 02:00 AM EDT Reads: 687
WebRTC: together these advances have created a perfect storm of technologies that are disrupting and transforming classic communications models and ecosystems. In his session at WebRTC Summit, Cary Bran, VP of Innovation and New Ventures at Plantronics and PLT Labs, will provide an overview of this technological shift, including associated business and consumer communications impacts, and opportunities it may enable, complement or entirely transform.
Oct. 8, 2015 01:30 AM EDT Reads: 732
“In the past year we've seen a lot of stabilization of WebRTC. You can now use it in production with a far greater degree of certainty. A lot of the real developments in the past year have been in things like the data channel, which will enable a whole new type of application," explained Peter Dunkley, Technical Director at Acision, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Oct. 8, 2015 12:00 AM EDT Reads: 6,951
SYS-CON Events announced today that Luxoft Holding, Inc., a leading provider of software development services and innovative IT solutions, has been named “Bronze Sponsor” of SYS-CON's @ThingsExpo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Luxoft’s software development services consist of core and mission-critical custom software development and support, product engineering and testing, and technology consulting.
Oct. 7, 2015 09:15 PM EDT Reads: 643
SYS-CON Events announced today that Dyn, the worldwide leader in Internet Performance, will exhibit at SYS-CON's 17th International Cloud Expo®, which will take place on November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Dyn is a cloud-based Internet Performance company. Dyn helps companies monitor, control, and optimize online infrastructure for an exceptional end-user experience. Through a world-class network and unrivaled, objective intelligence into Internet conditions, Dyn ensures traffic gets delivered faster, safer, and more reliably than ever.
Oct. 7, 2015 09:00 PM EDT Reads: 532