I recently attended, and spoke, at the Louisville Metro Infosec Conference (http://louisvilleinfosec.com/) in Kentucky. The organizers did an excellent job putting this event together and I really enjoyed my time there. My presentation was titled “Ninja Developers” and was focused on tools that developers can use to help them test for security vulnerabilities in their applications. The idea is that if developers can start using inexpensive (free) tools focused on security during their development phase, many of the security issues will be caught and corrected early. Some of the tools discussed include W3af, Skipfish, RatProxy, Burp Suite, Fiddler, etc..
If you are interested in watching the presentation, the entire thing is available online. I have included it here.