The Code Dx Team - Application Security Testing
Dr. Anita D’Amico
Chief Executive Officer
Dr. Anita D’Amico took on the role of CEO of Code Dx, Inc. after it was spun-out from Applied Visions, Inc. (AVI). She refers to herself as “a starter-upper” who develops a vision and fuels it with the energy, communication, and leadership needed to make that vision a reality. She has done that repeatedly throughout her 35+ years in advanced technology. Anita created the Secure Decisions division of Applied Visions, Inc. in 2000, to develop new technologies to enhance cyber situational awareness, and built it into a recognized leader in government-sponsored cybersecurity research. The technologies that now comprise Code Dx Enterprise, as well as our open-source Code Pulse aid to application penetration testing were originally developed by Secure Decisions under Anita’s leadership. Although Anita has worked for more than 20 years in the cybersecurity domain—starting as the head of Northrop Grumman’s first Information Warfare team—her background is different from most. She is a human factors psychologist, a specialist in cybersecurity situational awareness, and a security researcher. Anita is an expert in how security decisions are made, and takes on the user’s rather than the engineer’s perspective.
At Code Dx, Inc. Anita bridges gaps. She looks for application security barriers and works with the Code Dx team to develop solutions to overcome them. Those barriers could be lack of awareness, cost, difficulty in using AppSec tools and processes, or interpreting the results. To address the awareness gap, Anita has implemented a program that offers Code Dx for free to qualified educational institutions teaching secure coding practices. She is also bridging gaps between potential customers and access to Code Dx by building a robust reseller program that makes it easier for people in various parts of the world to take advantage of Code Dx’s easy and affordable application vulnerability correlation and management system, and to get support and services from local suppliers. A recent Forbes article named Anita D’Amico as one of “five cool women in security” who serve as role models for young women entering the field.
CSSLP, Chief Technology Officer
Ken is responsible for defining the technical vision and future growth of the Code Dx product suite. He has a passion for helping organizations through the process of building secure applications. He has published several articles on cybersecurity in peer-reviewed journals and is active in the application security community, attending and presenting at OWASP and DHS SwA Working Groups / Forums. Ken has contributed to freely available application security tools: CWEVis.org, a community resource to visually explore and search the Common Weakness Enumeration; and OWASP Code Pulse, a real-time code coverage tool for penetration testing activities. He has also formulated Code Dx’s hybrid analysis strategy for incorporating and correlating the results of multiple static and dynamic application security testing tools. Ken is an (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP) and Microsoft Certified Application Developer (MCAD).
With 20 years of software development experience, he understands first-hand the issues that developers have in incorporating security testing into their builds and collaborating with security analysts and testers who are evaluating code for security vulnerabilities. Within his role as CTO, Ken directs the Code Dx development team and provides specialized assistance to our support team.
Director of Sales
Curtis ensures that those who need the capabilities of Code Dx can easily and efficiently evaluate and procure it. He gets the word out about our new approach, meets with potential customers to assess their needs and discuss the suitability of Code Dx for their environments, ensures that they can evaluate the Code Dx technology and its value to their organization, and does everything needed to transition companies and government agencies into delighted consumers of Code Dx. Curtis has helped hundreds of companies to secure their networks and applications, and build security into their processes. He is a sales leader in cybersecurity, who specializes in helping early-stage companies build regional and national territories from scratch into major market players. He has built his reputation and extensive network of relationships over twenty years of work in software development and security. Early in his career, he developed enterprise software, trained development teams, and mentored technical staff in building robust systems on schedule.
As a sales engineer and consultant, he has helped hundreds of development teams secure their code and build reliability into the development process. As a sales director he has worked with hundreds of organizations to understand their security requirements and fulfill them with the most appropriate technology. He is an active contributor to the cybersecurity community, particularly in application security. He is a frequent presenter at regional and national forums and conferences on application security, network security and software development methods.