How to organize web application security testing in your company

I would like to tell how we built mature web application security testing competence in our company.

This speach will be interesting for test-managers and test leads, who would like to organize security testing in their companie and for the test engineers who are interesting in security testing.

Within the lecture I'll tell why we choose specific methodology, what materials we used for learning, how we setup team and environments, and will tell about main security certificates.