Welcome!

Artificial Intelligence Authors: Liz McMillan, Pat Romanski, Yeshim Deniz, Elizabeth White, William Schmarzo

News Feed Item

Security Innovation CTO Named Microsoft Most Valuable Professional

Security Innovation, an authority in application security assessment and training, announced today that Jason Taylor, Chief Technology Officer, was recognized as Microsoft® Most Valuable Professionals (MVP) in the category of Developer Security. The Microsoft MVP Award is an annual award that recognizes active and credible experts who willingly share their high quality, real world expertise with users and the Microsoft Communities.

Individuals are nominated for the Microsoft MVP Award by their peers or by Microsoft employees, and each nominee's contributions are then compared to the other candidates' contributions for the same year. MVPs reach out and contribute to online and offline communities through a broad range of channels: online forums, wikis, and technical guides; and their own podcasts, Web sites and blogs. Mr. Taylor is a regular external reviewer, contributor and primary author for the Microsoft Patterns & Practices security guidance. He’s been a content contributor to numerous Microsoft online properties for cloud security, software security, and regulatory compliance in the form of articles, videos, whitepapers, eLearning, etc. He has co-authored five Patterns & Practices Guides, and over 100 Patterns & Practices articles.

“The Microsoft MVP Award provides us the unique opportunity to celebrate and honor Jason’s significant contributions and say ‘Thank you for your technical leadership’,” said Mike Hickman, Director of Community Engagement, Microsoft Corporation.

“Security Innovation has been conducting cutting-edge research in the field of application security for more than ten years and is continually developing, refining, and sharing this research with the community at large,” said Ed Adams, CEO, Security Innovation. “Jason is at the core of many of these initiatives; he shares a true passion for secure software development. His willingness and desire to share his expertise with the technical community has undoubtedly helped thousands of individuals to understand how to reduce application security risk.”

Mr. Taylor’s accomplishments while previously serving in various leadership roles at Microsoft are numerous. With Loren Kohnfelder, he co-created STRIDE, an industry recognized vulnerability classification system and DREAD, a technique to qualify risk. He grew the Internet Explorer security test team from a solitary operation to the leading application security test team at Microsoft. Later, he built the Test Model Toolkit, which won a Best Practice Award and led to an in-person briefing with Bill Gates. Jason’s long experience in application security has been incorporated into Security Innovation’s application assessment methodologies and eLearning training platform. Mr. Taylor was the visionary and designer of courses such as “Introduction to Threat Modeling” and “Creating Secure Code for ASP.Net,” which have been taught in many of the world's largest technology organizations.

About Jason Taylor

Mr. Taylor leads the strategic direction for all technology initiatives and manages world-class development teams for the company's product lines. He has spent his career focused on application development and testing with a primary focus on application security. His unrivaled understanding of application behavior provided the impetus for Security Innovation’s industry pioneering fault injection tool, Holodeck Enterprise Edition, and critical enhancements to the company’s internal testing and development tools.

Mr. Taylor has published and co-authored several whitepapers, guides and books including:

  • Team Development with Visual Studio Team Foundation Server with J.D. Meier of Microsoft
  • Improving Web Services Security with Microsoft Patterns & Practices
  • Application Architecture Guide 2.0 with Microsoft Patterns & Practices
  • Security Engineering Explained with Microsoft Patterns & Practices
  • Security Threats: Risks, Protection & Limitations for CIO Update

Security Innovation has established unparalleled expertise across Microsoft platforms and development environments. The two companies maintain a lengthy and successful relationship, collaborating on numerous application security initiatives, code reviews, penetration tests, development and research projects:

  • More than 50 direct engagements with various Microsoft groups that include penetration testing, code reviews, research/competitive analysis, customer-facing guidance creation, custom development and training.
  • Several research projects that received high visibility and acclaim, including direct briefing to Bill Gates
  • A.C.E. certified as a third party penetration test organization
  • VisualStudio Integration Partner
  • Member of the Microsoft Security Development Lifecycle (SDL) Pro Network, and close relationship with Microsoft Security Engineering Group for SDL-related work.
  • Co-authored 5 Patterns & Practices Guides

About Security Innovation

Security Innovation is an established leader in the application security space and offers solutions based on the three pillars of the Software Development Lifecycle (SDLC): standards, education and assessment. On a mission to help eliminate the root cause of most data breaches – insecure software applications – Security Innovation helps organizations build internal expertise, uncover critical vulnerabilities and integrate security into their software development lifecycle.

The company’s flagship products include TeamMentor, “out of the box” secure development standards and TeamProfessor, the industry’s largest library of application security eLearning courses. The TeamProfessor eLearning platform serves as the foundation for security awareness and application vulnerability assessment, remediation and prevention skills development. It offers more than 45 courses and over 100 hours of real-world content, with popular topics including Mobile Security (awareness and secure development for Android, iPhone, and Blackberry), secure coding (.NET, Java, C/C++, C#, PHP, Oracle), PCI-DSS and OWASP.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

IoT & Smart Cities Stories
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, will provide an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life ...
Chris Matthieu is the President & CEO of Computes, inc. He brings 30 years of experience in development and launches of disruptive technologies to create new market opportunities as well as enhance enterprise product portfolios with emerging technologies. His most recent venture was Octoblu, a cross-protocol Internet of Things (IoT) mesh network platform, acquired by Citrix. Prior to co-founding Octoblu, Chris was founder of Nodester, an open-source Node.JS PaaS which was acquired by AppFog and ...
The Founder of NostaLab and a member of the Google Health Advisory Board, John is a unique combination of strategic thinker, marketer and entrepreneur. His career was built on the "science of advertising" combining strategy, creativity and marketing for industry-leading results. Combined with his ability to communicate complicated scientific concepts in a way that consumers and scientists alike can appreciate, John is a sought-after speaker for conferences on the forefront of healthcare science,...
"The Striim platform is a full end-to-end streaming integration and analytics platform that is middleware that covers a lot of different use cases," explained Steve Wilkes, Founder and CTO at Striim, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
The deluge of IoT sensor data collected from connected devices and the powerful AI required to make that data actionable are giving rise to a hybrid ecosystem in which cloud, on-prem and edge processes become interweaved. Attendees will learn how emerging composable infrastructure solutions deliver the adaptive architecture needed to manage this new data reality. Machine learning algorithms can better anticipate data storms and automate resources to support surges, including fully scalable GPU-c...
Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: Driving Business Strategies with Data Science," is responsible for setting the strategy and defining the Big Data service offerings and capabilities for EMC Global Services Big Data Practice. As the CTO for the Big Data Practice, he is responsible for working with organizations to help them identify where and how to start their big data journeys. He's written several white papers, is an avid blogge...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the...