As the attacks keeps on changing, software solutions developed must be hack-resilient. To achieve such solutions, developers should recognize the significance of secure coding within the development phase of SDLC. Developers tend to ignore coding in a secure fashion due to various project commitments in delivering the solutions. It has been seen that an application hacker is very much successful who understands coding. Every business requirement carries a threat which adds to the risk level of the application. Developers should have knowledge on how to protect their code from various exploit points within the application. Solutions must be developed in a protected mode to avoid various application attacks. Strategy to implement generic secure functions within the implementation phase which can be used by the development teams will be imparted.
- Implement secure functions / routines.
- Develop secure business functionality.
- Identifying gaps in coding.
About Nilay Sangani
Nilay Sangani is an IT Security Planning Analyst for Abu Dhabi Company for Onshore Oil Operations (ADCO), where he is responsible for incorporating security in Software Development Lifecycle (SDLC). In this role, he focusses on building and developing secure controls which is delivered to the developers at each phase of the SDLC. He conducts penetration tests for the web applications, develops security standards for various technologies and other IT security related projects. Having nearly 5 years of Software Development experience in wide-ranging development technologies and frameworks, he also holds various industry certs such as C|EH, E|CSA, MCTS and MCPD. Prior to this role, Nilay worked as an IT Consultant for Emirates Group IT with their Software Technology division developing Business Solutions for the group. He started his career with Cybage Software where he was coding solutions for security vendors.