Developing and Enforcing Security Policies
To safeguard security, most enterprises have added security officers who report to CIOs or other executive team members. Yet, few enterprises have developed a solid security policy (a critical design document that every organization needs), let alone determined how to enforce one. This presentation describes how to create an application security policy, and explains how such policies correlate to Sarbanes-Oxley compliance. First, we'll outline a general strategy for developing a security policy, and inform readers about resources that will help them develop security policies that suit their unique needs. Next, we’ll explain how to implement the security policy in the code, and how to confirm that applications comply with the security policy. We’ll also explain why the "Security Policy" approach is an effective way to prevent application-level security vulnerabilities.

Principles and Tools for SOA Governance
In the past year, Web services and service-oriented architectures have become mainstream because of their ability to provide business agility and flexibility through integration, productivity, and reuse. With SOA enablement clearly on the rise, developers are turning to SOA governance as a means of controlling what and how services located within an SOA are deployed. Learn about SOA governance and the principles and tools that support SOA governance in the leading development environments. Hear a list of best practices and examine a real-world example of a large insurance company that built out an SOA, with a look at the SOA governance platform that has been put in place.