This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

AppSecDC09 Federal CISO Panel

Jump to: navigation, search

Topics of Discussion

The US Federal Government owns some of the largest IT infrastructures in the world.  With the focus by the Obama Administration on getting more data online, the application security world is wonder just how they intend to do that in a secure manner.  Come join us for a panel discussion on what today's Federal Chief Information Security Officer (CISO) thinks about application security.

Discussion Topics:

  • The level of application security program maturity inside the Government
  • Use of techniques and tools
  • Integration of application security inside existing security management frameworks
  • Building an application security team inside of a larger security program
  • Web 2.0, transparency, and Government

The Panelists

Moderator: Matt Fisher, Piscis Security

  • Earl Crane, Branch Chief for Security Strategy, Department of Homeland Security
  • Gary Galloway, Deputy Director of the Office of Information Assurance, Department of State
  • Timothy Ruland, CISO, US Census Bureau
  • Richard Smith, CISO, Transportation Security Administration