Home > Ask the Software Quality Experts > Meet the experts > Chris Wysopal
EMAIL THIS

Ask The Software Quality Expert: Meet The Experts
Back to Ask the Expert Back to Meet the Experts
Chris Wysopal Chris Wysopal, co-founder and chief technology officer, Veracode

Chris Wysopal, co-founder and chief technology officer of Veracode, is recognized as an expert and a well known speaker in the information security field.

He has given keynotes at computer security events and has testified on Capitol Hill on the subjects of government computer security and how vulnerabilities are discovered in software. Chris also has spoken as the keynote at West Point, to the Defense Information Systems Agency (DISA) and before the International Financial Futures and Options Exchange in London. At Veracode, Mr. Wysopal is responsible for the security analysis capabilities of Veracode technology.

Chris' groundbreaking work in 2002, while at the company @stake, was instrumental in developing industry guidelines for responsibly disclosing software security vulnerabilities. Chris, along with Steve Christey of MITRE, proposed an IETF RFC identified as the "Responsible Vulnerability Disclosure Process," which became the foundation for the Organization for Internet Safety (OIS). Chris is a founder of OIS, which established industry standards for the responsible disclosure of Internet security vulnerabilities.

Chris is co-author of the award winning password auditing and recovery application @stake LC (L0phtCrack) which is currently used by more than 6,000 governments, military and corporate organizations worldwide. He's also the author of "The Art of Software Security Testing: Identifying Security Flaws," published by Addison-Wesley and Symantec Press in December 2006.

Chris began his career as a principal software engineer at Lotus Development Corp. where, in the mid 90s, with the rise of the Internet, he realized the critical need for secure software. He and his colleagues then created the first security research think tank known as L0pht Heavy Industries, which was later acquired by @stake in 1999.

Chris became the manager of @stake's Research Group and later became @stake's vice president of research and development where he led a world class team of security researchers tackling the problem of automating the process for finding and disclosing security vulnerabilities in software. He also managed @stake's products group to develop new security tools focused on wireless, infrastructure and application security.

In 2004, when @stake was acquired by Symantec, Chris became its director of development and was responsible for the engineering team that built binary analysis technology to find vulnerabilities in software.
Do you want to help other Software Quality professionals? Become an expert and answer questions targeted towards a specific category.
 
Become an Expert for this site.
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2006 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts