Gary McGraw is the CTO of Cigital, Inc., a software security consulting firm with headquarters in the Washington, D.C. area and offices throughout the world. He is a globally recognized authority on software security and the author of eight best selling books on this topic.

Microsoft has made great strides in software security and building security in---and they're publishing their ideas in the form of the SDL. Right about in the middle of the last ten years (five years in) we all collectively realized that the way to approach software security was to integrate security practices that I term the "Touchpoints" into the software development lifecycle. Now, at the end of a decade of great progress in software security, we have a way of measuring software security initiatives called the BSIMM.

Over the last two years we’ve brought Amsterdam a quad track conference with some of the leading experts from around the world and 2012 will be no different except we’re moving to a new and better venue! Our new home for HITB2012AMS will be the Okura Amsterdam, a 5 star business class hotel in the heart of Amsterdam with easy access via tram, bus or train.

2012 will also see the introduction of a brand new attack and defense Capture the Flag game run as always by the HITB.nl CTF crew. “Capture the Flag Bank0verflow” will also for the very first time combine forces with the OWASP Netherlands team (OWASP.NL)! In addition to the all new Capture the Flag, we’re also adding in a CommSec village – an area aiming to bring together not only the various Benelux hackerspaces, but also participation from the open source communities (Ubuntu, OWASP, Mozilla, Gentoo etc). Members of TOOOL Netherlands will as always also be on hand with their latest lock picking kungf00!