Web Application Security: An Executive Briefing (London, 26 Feb.)

Due to Unforeseen Circumstances This Event Has Had to Be Cancelled

We are working to reschedule the event for later in the year and will post updates on our website. Our Apologies to those already registered.

Declan’s recent talk at a similar event in Bristol is now Available for Download

Session Overview

If your company writes or uses software connected to the internet then this briefing will inform you of the security threats you face, your responsibilities in respect of those threats and give practical suggestions on how to discharge those responsibilities effectively.

  • Thursday 26 February 2015
  • 8:00am-9:30am (UK times) – Doors open at 7:30am
  • London, UK (Runway East, Old Street)
  • Register below to ensure your FREE place

About the Presenter

PR008-Declan_O’Riordan_TVS_Security_ExpertDeclan O’Riordan is Head of Security Testing at T&VS and winner of the prestigious “Best Paper” and “Best Session” awards at the EuroSTAR 2014 conference on Software Testing. Declan has worked for both large and small companies and across a broad range of sectors from insurance and banking to retail and government agencies. Declan is well known for speaking on IT security in general and application security in particular and believes it is both possible and essential for project teams to have a working understanding of security.


Internet security is an area that is not well understood, even by many of your IT staff. This is a golden age for hackers, with breaches increasing at a tremendous rate according to the latest Verizon report:
The paradigm of perimeter (network-centric) defence is now unable to keep up with malicious innovations that target the web applications, and that method of protecting assets is approaching a technical dead-end. Even if you double spending on perimeter defence, only a small increase in security would be achieved, and the return on investment would be very poor. It is crucial that cyber-security spending is targeted at preventing the real threats to your organisations, and not misplaced into unbalanced defences purely due to tradition.

This talk will use real-life case studies, including a $1 billion breach that cost the CIO and CEO their jobs, and what happens when businesses refuse to pay ransoms to criminal hackers that have taken control of supposedly secure systems.

We will highlight how compliance with standards such as ISO 27001 only sets a floor, not a ceiling on security. Everyone in modern organisations, including the executives, now need at least a basic understanding of cyber security to ensure their responsibilities are being discharged in good faith. We can win this struggle, but we have to understand the issues first.

T&VS will present answers. We would like you to consider them!


  • 7:30am – Registration and Coffee
  • 8:00am – Presentation: Web Application Security
  • 9:00am – Questions & Networking
  • 9:30am – Close