A quick personal plug that I'm speaking at SD West on Friday March 13th. I'm co-presenting with Brad Hill and Scott Stender of iSec Partners.
Our talk title is "Managing a Software Development Security Program: Tactical Advice for the First 100 Days"
There has been plenty of discussion in forums such as WASC, OWASP, and the SC-L list about how to better evangelize secure development to the broad development community. Having a dedicated security track at a developer conference is a good step in that direction.