Meeting 2017/02/09

what Agile Security
when 09 februari 2017
where Hitachi Data Systems Nederland B.V., Heksekamp 31, 5301 LX Zaltbommel



Welcome - press release - video
Frederik Schröder - country manager Hitachi Data Systems

Opening - presentation
Henk Klöpping - president (ISC)2NL
The Agile Security Manifesto - presentation
Nick Murison - Synopsys
The Agile Manifesto was created in 2001 to provide an alternative to document-heavy software development practices. Now we’ve created our own set of principles to complement the Agile Manifesto by addressing similar inefficiencies plaguing application security. These four principles are meant to guide and inspire us to build secure software in an agile way.
  1. Rely on developers and testers more than security specialists.
  2. Secure while we work more than after we’re done.
  3. Implement features securely more than adding on security features.
  4. Mitigate risks more than fix bugs.
Nick’s talk will discuss these four principles, and how adding them your own Agile process can helpyou integrate critical security measures in a natural, efficient way.
A New Security Management Approach for Agile Environments - presentation
Arthur Donkers and Pascal de Koning - 1Secure
  • Four false assumptions that make the traditional security approach fail
  • ‘Feet in the mud’ with the Agile Security Engagement Model (ASEM)
  • Explanation of the innovations in this Agile Security approach
Agile Security in practice - presentation
Olga Kulikova and Ton Diemont - KPMG
During the presentation we will present two use cases from our clients that practice agile and invest in security. The first case will cover security issues that our client faced due to the way it arranged agile development. The second use case will highlight, on the contrary, a better organized agile team with regard to security.
We will also discuss key security considerations of agile environments, and share our view on the way agile teams should prepare for security audits.
Agile Security at KPN - presentation
Dave van Stein - Xebia
Early 2014 KPN Digital implemented the Agile way of working. This introduced some challenges with respect to security and privacy as the traditional (project based) methods were too time consuming and rigid.
In this presentation Dave will showcase some of the changes KPN made to get from an Agile + Security to an Agile Security way of working.



This evening was hosted and sponsored by

Hitachi Data Systems Nederland
and sponsored by




Our host for the evening was Hitachi Data Systems. They have this nice exposition in the hallway.

The building has some remarkable facilities.

Gathering and dinner.

Welcome by our host.


Nick Murison - Synopsys

Arthur Donkers and Pascal de Koning - 1Secure

Olga Kulikova and Ton Diemont - KPMG

Dave van Stein - Xebia