David Wichers
Dave has over 20 years of experience touching all aspects of secure software development for high assurance projects. A founding member of OWASP and current Board Member, Dave has contributed his expertise to many free and open tools, including the OWASP Top Ten, Enterprise Security API (ESAPI) and WebGoat. As a foremost expert in application security, Dave teaches secure coding practices to a worldwide clientele, including sectors of the Department of Defense and the Federal government. Dave began his career as a computer security consultant assisting DoD clients such as the NSA, U.S. Navy, U.S. Army and product vendors selling into the defense market. Dave holds a B.S.E in Computer Science from Arizona State and a M.S in Computer Science from the University of California at Davis and is a CISSP. A history buff, Dave enjoys genealogy, and discovered that he is a descendant of Pocahontas.
Subscribe Now- Thought Leaders
- Application Security
- Contrast News
- DevOps
- AppSec
- vulnerabilities
- Hacked
- Threat
- Runtime Security
- DevSecOps
- API security
- Product
- Contrast Protect
- RASP
- cyberattacks
- Contrast Assess
- CodeSec
- Security
- ADR
- AI
- APIs
- MFA
- Metrics
- cybersecurity awareness month
- CVE
- OSS
- cybersecurity
- 2FA
- CISA
- IAST
- SCA
- incident response
- passwords
- application attacks
- data breach
- ransomware
- regulation
- runtime protection
- AWS
- CISOs
- Contrast Scan
- JavaScript
- Log4j
- MTTR
- SAST
- backlog
- threat detection
- CISO
- GitHub
- OpenSource
- SOC
- Security Observability
- WAF
- attack
- breach
- critical infrastructure
- cyberespionage
- observability
- path traversal
- scan
- software development
- threat modeling
- transparency
- .Net
- AST
- Awards
- ChatGPT
- Community Edition
- Contrast SCA
- DBIR
- DHS
- Gen AI
- KVE
- Log4Shell
- OpenAI
- RSA
- React
- SIEM
- SQL injection
- XSS
- application layer
- artificial intelligence
- awareness
- chat apps
- cybercrime
- data privacy week
- detection
- jQuery
- malware
- okta
- python
- remediation
- security culture
- security monitoring
- supply chain
- vulnerability disclosure
- workplace
- zero-day
- .Net
- AI Act
- Angular
- Article 25
- Below the Waterline
- CISO Insights
- CSRF
- Chris Hughes
- Cloud Native Security
- Console
- Cyber Bank Heists
- DAST
- DORA
- Dependabot
- Developers
- Digital Operational Resilience Act
- Drupal
- EDR
- EL injection
- European Union
- Gartner Peer Insights
- Genie
- Git
- GitHub Action
- GitLab
- Go
- IoT
- Known Exploited Vulnerabilities
- MLflow
- MOVEit
- Microsoft
- Namasday
- Netflix
- Node.js
- OpenSourceSoftware
- PATs
- Protect data
- RCA
- RCE
- Regulation (EU) 2022/2554
- Ruby
- SEC
- SOAR
- SecOps
- Secure from within
- Splunk
- TypeScript
- agents
- attack data
- authentication security
- automatic updates
- benefits
- best practices
- brute force attack
- burnout
- certificates
- compliance
- corporate culture
- crime
- data privacy
- deep fakes
- digital resilience
- directory traversal
- dwell time
- false positive
- financial
- financial institutions
- financial sector
- github application security
- github secure code
- github security scanning
- hackers
- happiness
- hiring
- insecure deserialization
- insider threat
- instrumentation
- java
- labor shortage
- languages
- legislation
- machine learning
- malicious actors
- method tampering
- nation states
- open-source software
- organized crime
- passkeys
- password managers
- penetration testing
- perks
- personal access tokens
- phishing
- policies
- proactive security
- quantum encryption
- regulatory
- resilience
- retention
- risk management
- risk ranking
- root account
- sbom
- scams
- secure by design
- security blueprint
- security debt
- security posture
- shift smart
- social engineering
- telemetry
- tracking
- training
- unsafe deserialization
- verizon
- video
- voice cloning
- voice of the customer
- vue.js
- vulnerability
- work-life balance
- zero days
Loving our content? Subscribe now!
Get the latest application security news, trends, tips and insights content from Contrast directly to your inbox. By subscribing, you will stay up to date with all the latest and greatest from Contrast Security.