View analytic
avatar for Steve Springett

Steve Springett

Principal Security Architect
Steve educates teams on the strategy and specifics of developing secure software.

He practices security at every stage of the development lifecycle by leading sessions on threat modeling, secure architecture and design, static/dynamic/component analysis, offensive research, and defensive programming techniques.

Steve is an open source advocate and is active in the OWASP community supporting several open source projects including OWASP Dependency-Check and Dependency-Track along with supporting the PackageURL and CycloneDX specifications. He's also a member of multiple working groups that are defining use-cases and formats for software transparency.