The Software Assurance Forum for Excellence in Code (SAFECode) is a non-profit organization exclusively dedicated to increasing trust in information and communications technology products and services through the advancement of effective software assurance methods. SAFECode is a global, industry-led effort to identify and promote best practices for developing and delivering more secure and reliable software, hardware and services. Its members include Adobe, CA Technologies, EMC Corporation, Intel Corporation, Microsoft Corp., SAP AG, Siemens AG, and Symantec Corp..
SAFECode BOARD MEMBERS>
Previously, Howard was the President and CEO of the Information Security Forum (ISF). Before ISF, he served as Vice President and Chief Information Security Officer and Chief Security Strategist for eBay Inc., and formerly operated as the Chief Security Officer for Microsoft Corp. He also served as Chief Security Strategist for the US-CERT Partners Program for the U.S. Department of Homeland Security. Howard also brings to bear over 26 years of military service. Beginning active duty with the U.S. Air Force, he later joined the Arizona Air National Guard. With the AF he served in a number of military and civilian roles culminating as Supervisory Special Agent with the Office of Special Investigations (AFOSI). He finished his last 12 years as an Army Reserve Special Agent with Criminal Investigation Division’s (CID) Computer Crime Unit, all while serving over a decade as police officer with the Chandler Police Department.
Howard holds a bachelor’s degree in business administration (BSBA) and a master’s degree in organizational management (MAOM) from the University of Phoenix. He also holds an Honorary Doctorate degree in Humane Letters. Howard was an Adjunct Professor at GA Tech, GTISC, Professor of Research at Idaho State University and Adjunct Distinguished Fellow with Carnegie Mellon’s CyLab and a Distinguished Fellow of the Ponemon Privacy Institute. Howard is a Ham Radio operator (W7HAS), a private pilot, outdoorsman and an avid Harley-Davidson rider.
Lipner joined Microsoft in 1999. In late 2001, Lipner and his team devised the strategy of "security pushes" that, as part of the Trustworthy Computing initiative, enabled Microsoft to make rapid improvements in the security of its software and to change the corporate development culture to emphasize product security. The SDL is the product of these improvements, and is widely viewed as the industry's leading secure software development process.
Before joining Microsoft, Lipner worked for a variety of software vendors and government contractors as a researcher, consultant, development manager and general manager in IT security. Many of the concepts whose development he led form the basis for today's approaches to building secure systems.
Lipner is coauthor with Michael Howard of The Security Development Lifecycle (Microsoft Press, 2006) and is named as inventor on twelve U.S. patents and two pending applications in the field of computer and network security. He served two terms on the United States Information Security and Privacy Advisory Board and its predecessor. Lipner holds S.B. and S.M. degrees from the Massachusetts Institute of Technology and attended the Harvard Business School's Program for Management Development.
She is also active member of the global software engineering community, playing an active role in various major software conferences such as the International Conference on Software Engineering. She is also member-at-large of the Association for Computing Machinery’s Special Interest Group on Software Engineering (ACM SIGSOFT).
She received her doctorate in software engineering at the University of Karlsruhe in Germany and her Masters in Computer Science at Purdue University.
David Lenoe is Director, Secure Software Engineering at Adobe. In his role, Lenoe manages the Product Security Incident Response Team (PSIRT) dedicated to responding to and communicating about security issues, as well as the Adobe Secure Software Engineering Team (ASSET) responsible for ensuring Adobe's products are designed, engineered and validated using security best practices. Lenoe is also responsible for Adobe's vulnerability information sharing via the Microsoft Active Protections Program (MAPP). Lenoe represents Adobe on SAFECode's Board of Directors.
Lenoe joined Adobe as part of the Macromedia acquisition in 2004. At Macromedia, Lenoe held several management and engineering positions in the areas of product security, product management and quality assurance.
Lenoe earned a BA in Japanese language and literature from Connecticut College.
Adobe is changing the world through digital experiences. For more information, visit www.adobe.com.
Previously, Mr. Baize pioneered EMC's push towards security. He was a founding member of the leadership team that defined EMC's vision of information-centric security, and which drove the acquisition of RSA Security and Network Intelligence in 2006.
Prior to joining EMC, Mr. Baize held various positions for Groupe Bull in Europe and in the US where he was successively the security architect, product manager and director of security strategy, responsible for the company's security product line.
Mr. Baize holds a M.S. degree in Computer Science from Ecole Nationale Supérieure des Télécommunications in Brest, France, and is a Certified Information Security Manager (CISM) by the Information Systems Audit and Control Association (ISACA). He is holder of a US patent, author of international security standards and a regular speaker at security conferences in the US and Europe.
Mr. Bonver is a frequent speaker at global security events and conferences. In addition to representing Symantec on the SAFECode Board of Directors, he is also on the board of the Open Web Application Security (OWASP) Los Angeles chapter, and is a co-organizer of OWASP California regional application security conferences and summits.
Mr. Bonver is a Certified Information Systems Security Professional (CISSP) and a Certified Secure Software Lifecycle Professional (CSSLP). He holds a master's degree in computer science from California State University, Northridge, and a bachelor's degree in computer science from Rochester Institute of Technology.
As head of the Securability Center of Excellence and Product Vulnerability Response teams Anders Magnusson is responsible for managing all aspects of the Secure Software Development Lifecycle at CA Technologies - including securability training and testing, architecture reviews, usage of 3rd party components and vulnerability response activities.
During his tenure at CA Technologies, Anders has held a number of different roles and responsibilities. After his start as a pre-sales technician in Europe, he spent several years working as liaison between corporate management in US and technical managers in Europe, Asia and South America. He later leveraged this experience as a software architect, designing standards for product development as well as best practices for solutions spanning multiple products.
Anders developed and continues to manage the Foundational Requirements for CA Solutions which establish basic standards for all products – such as accessibility, scalability, securability and upgradeability. Anders is a member of the CA Council for Technical Excellence and has contributed as a principal author for publications such as CA Technology Exchange, CA Green publications and a multitude of Best Practices documents.
Prior to joining Intel in 1997, Mr. Doughty worked in the Design Automation Industry where he led the development of commercial and proprietary tools to support the design and validation of semiconductors.
Mr. Doughty earned his Bachelor's degree in Computer Engineering from the University of California, San Diego.
Mr. Huebner's accomplishments before SAP include 11 years with Microsoft in numerous strategic engagements wherein as a member of the Corporate Trustworthy Computing Team he represented the company as a Government Security Director, internationally. Before joining Microsoft Mr. Huebner was a public officer at the data protection supervisor for the state of Baden-Württemberg. Mr. Huebner has a degree in law and has specialized on data protection and security.