Flavio Bonfiglio Sorans

Managing Principal and Head of Software Security, Foregenix

As Managing Principal and Head of Software Security at Foregenix, Flavio has 25 years of experience in the IT arena, 15+ in payment industry security. An influential member of PCI Software Security and Mobile Task Forces, his credentials include P2PE Application, SSA, SSLCA, 3DS, PNC, and ISO/27000 and his main areas of expertise are PTS software, card-management systems, payment gateways and E-commerce.

Flavio Bonfiglio Sorans's Events

Getting Ready for Secure Software Standard Security Assessment - A Vendor And A Penetration Tester Perspective

Date: Wednesday, 9 October

Track Two

Presented by: Carlos Marquez, QSA, PFI Core, Senior Information Security Consultant, Foregenix and Flavio Bonfiglio Sorans, Managing Principal and Head of Software Security, Foregenix

We will provide an overview of the Secure Software Standard and the key differences between traditional application pentest and security tests for this standard. The goal is to help application vendors and customers prepare for the assessment process and anticipate the information and technical scenarios required. The aim is to facilitate an understanding of the impact and implications of the tests and findings and how to improve the Software Life Cycle to get ready. Assessing applications involves understanding payment transactions, sensitive data flows and access to all the components from operational and functional points of view. This guide will help you to be prepared for your assessment!