about-me variable
SEC Consult invites you to their event

How to build a secure architecture based on your technology stack | Secure Software Development

About this event


How to build a secure architecture based on your technology stack


Thomas Kerbl

Principal Security Consultant @ SEC Consult

Title: How to build a secure architecture based on your technology stack

Abstract: Re-inventing the wheel is usually a bad idea – especially when your goal is to build resilient and secure applications. Nevertheless, it is still common practice to design individual security mechanisms time and time again instead of developing secure reference architectures as blueprint once. This leads to unnecessary complexity, inconsistency, and redundant efforts across all domains of secure software development.

OWASP SAMM v2 provides guidance for those who want to do better. Following those best practices enables architects and developers to establish secure building blocks based on their specific technology stack and protection requirements. Thomas will discuss how to get started and lay out a step by step plan that shows you how to take your security architecture to the next level.

Key Take-Aways:

  • Understanding security architecture in the context of OWASP SAMM v2
  • How to implement security design principles and design patterns
  • How to establish a security architecture framework

Target audience: Security Architects, Requirements Engineers, Developers incl. Development Lead, Operations incl. Operations Lead, Security Tester incl. Test Lead, (C)ISOs,

Basically, everyone involved in building secure software.

Online Seminar Language: English

CPE credits: 1.5 (we will send you a CPE certificate after the online seminar, upon request).

Hosted by

  • Guest speaker
    Thomas Kerbl Principal Security Consultant @ SEC Consult Unternehmensberatung GmbH

    Thomas has been active in the field of information security for over 20 years. As principal security consultant and team leader he is currently engaged in projects concerning Secure Software Development, where he incorporates his experience as a former penetration tester and security architect.

  • Team member
    Host SEC Business Online Seminar SEC Consult

    SEC Consult is one of the leading consultancies in the field of cyber and application security. The company specializes in information security management, security audits, penetration testing, ISO 27001 certification support, cyber defense and secure software certification.

SEC Consult

SEC Consult is a specialist in Information Security, Security Audits, Penetration Tests, Secure Software Development, Certification Support and Cyber Defense. SEC Consult is part of Atos.