Entries by Sebastien Deleersnyder
Keep up to date with the latest Threat Modeling news and insights
Subscribe now to our monthly “Threat Modeling Insider” TMI newsletter – packed full of expert advice and articles to get you started with threat modeling. Threat modeling has always been a passion and a cornerstone of the security services we provide. It helps to identify and mitigate potential security issues early on, when they are…
OWASP BeNeLux Days 2018
I love working with OWASP because I strongly believe in the values of knowledge sharing and community building. I personally started the OWASP Belgium chapter in Belgium in 2005. Today, I am also very active as co-leader on the OWASP SAMM project. When I started my company Toreon (cyber security consulting), I tried to instil the same values…
New Whiteboard Hacking Training: Advanced and for Pentesters
One of Toreon’s key values is the gathering and sharing of knowledge. We try to encourage our own people to do this all the time and actively facilitate this. Knowledge grows exponentially when shared and combined with people of all knowledge levels, even if they come from different IT security domains. This made us realise…
Our ‘Adding Privacy by Design in Secure Application Development’ talk at OWASP London
On 5-June Seba delivered the talk “Adding Privacy by Design in Secure Application Development” at the OWASP Europe conference in London. Seba addressed the complex GDPR challenge for developers as part of a Secure Development Lifecycle approach. The presentation covered: • GDPR requirements covering design, data lifecycle, users and end of life aspects • Privacy…
Gain more insight and create doomsday scenarios for better threat modeling
In previous blogs you could already read about what threat modeling is, and about the 4 steps. In practice, however, threat modeling is more than just a technical analysis of your application. The threat landscape is constantly evolving, and so is your organisation. Therefore, you need to understand the technical and business context, and create…
Toreon at Privacy Café: combining privacy by design with the SDLC
At the last Privacy Café*, held in Mechelen on October 23rd, Seba Deleersnyder, co-founder and managing partner of Toreon, and Siebe De Roovere, Privacy and Information Secruity Expert at Toreon, explained to the Café’s guests how to combine Privacy by Design with the SDLC and objectively prove that your organization meets all of the set…
Why we sponsor BruCON 2017? Win the last ticket!
Proud sponsor! We are a proud Diamond sponsor of BruCON 2017 because we: Believe in supporting the IT security community in Belgium. Like the really excellent line-up: http://2017.brucon.org/index.php/Schedule Bring our consultants to the trainings and conference: to increase their knowledge and build our community network. Are on the lookout for new colleagues to join our…
Embedding GDPR in the secure development lifecycle (SDLC)
Did you know that the GDPR and SDLC re-inforce each other and that the GDPR can be used as the ideal business case to start with SDLC? Siebe and I explained how and why during the OWASP AppSec Europe conference in Belfast. Couldn’t attend? You can find the presentation in our previous blog, or begin…
Presentation “Embedding GDPR in the SDLC” available for download
Last week Thursday we delivered our presentation “Embedding GDPR in the SDLC” at the OWASP AppSec Europe conference in Belfast. The presentation is the outcome of various projects where we encounter both privacy and application security challenges. Siebe De Roovere (one of our privacy specialists) and myself have worked on integrating GDPR compliance requirements in…