Barmak Meftah, Sr. VP, Products & Services at Fortify, shares his perspective on application security and the need for a rigorous risk modeling approach. Security should be considered early in the software development process, he says. Software developers are typically concerned with delivering their product on time and with the desired set of features. The next installment will share his view on how to evangelize security and make it part of the corporate culture of the security evangelizing program that is critical to scoping tests appropriately.”]