This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP CISO Survey Project

From OWASP

Jump to: navigation, search

OWASP CISO Survey and Report

Among application security stakeholders, Chief Information Security Officers (CISOs),are responsible for application security from governance, compliance and risk perspectives. The OWASP CISO Survey provides tactical intelligence about security risks and best practices to help CISOs manage application security programs according to their own roles, responsibilities, perspectives and needs.

Report 2013

And the latest release is here OWASP CISO Survey

New CISO Survey 2014 Questionnaire is out!

Please help us and share it with your security manager to fill it out Questionnaire is available in:

English: https://www.surveymonkey.com/s/CISOSurvey2014
Chinese: https://www.surveymonkey.com/s/CISOSurvey2014cn
Hebrew: https://www.surveymonkey.com/s/CISOSurvey2014iw
Japanese: https://jp.surveymonkey.com/s/CISOSurvey2014jp

Questions and getting involved

If you have questions or like to actively support and participate in this project, please join the project mailing list or feel free to send an email to the project lead at tobias.gondrom (at) owasp.org.

Licensing

The OWASP CISO Survey Report is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

Core Content

The CISO Survey Report 2013 includes:

Threats and risks
Investments and challenges
Tools and technology
Governance and control

Presentation

Link to presentation at the AppSecUS 2013 in NYC

Project Leader

Tobias Gondrom

Related Projects

Quick Access

News and Events

Jan 2014 Version 1.0 released
Dec 2013: Interview with Marco Morana and Tobias Gondrom about the CISO Guide and CISO Survey
20 Nov 2013: The CISO Guide and CISO Survey 2013 will be presented at AppSec USA
June 2014: Watch here the presentation of the CISO Survey Report 2013 at AppSec EU in Cambridge - new updates will also be presented at AppSec USA

In Print

This project can be purchased as a print on demand book from Lulu.com.

Classifications

Contributors for the CISO Survey 2014

The CISO Survey 2014 was authored, edited and reviewed by a worldwide team of volunteers.
The primary contributors to date have been (in alphabetical order):

Hemed Gur Ary
Tobias Gondrom (Project Lead)
Marco Morana
Riotaro Okada
... please add your name here.

For translation and support promoting the questionnaire

Chinese Team:
- 樊山 (Fan Shan)
- 刘宁 (Liu Ning)
- Json (Json)
- 郝益壮 (Hao Yizhuang)
Hebrew Team:
- Ori Troyna
- Or Katz
- Baruch Atir
- Eyal Estrin
- Hemed Gur Ary
Japan Team Volunteers:
- Akiteru Kamoshida
- Chia-Lung Hsieh
- Kusuma Dewi
- Mikado Hisayama
- Satoshi Shida
- Shoichi Nakata
- Takanori Nakanowatari
- Yasunori Kanai
- Yoshinari Fukumoto
- Yusuke Karasawa
- Robert Dracea
- Riotaro Okada (Japan team lead.)
Polish: Wojciech Dworakowski

Volunteers for the CISO Survey 2013

The CISO Survey 2013 was authored, edited and reviewed by a worldwide team of volunteers.
The primary contributors to date have been (in alphabetical order):

Tobias Gondrom
Marco Morana
Stephanie Tan
Colin Watson

And many more helping hands from OWASP chapters around the world and the former Global Industry Committee, providing input, designing questions, translating and sending out the survey questions around the globe. Thank you all! We couldn't have done it without you!
So a big thank you to all of you (in alphabetical order):

Balint Szabo,
Eoin Keary,
Israel Bryski,
Ivy Zhang,
Jasmine Beg,
Kate Hartman,
Lorna Alamri,
Mauro Flores,
Rex Booth,
Timur kHrotko.

And last but not least, the many CISOs who took the time to fill out the Survey and offer their input and advise.

(As this was a great team effort of many hands over a long period of time, if I forgot someone, I apologize and please just drop me a message so I can add you to the list...)

Contributing organisations

(if you can help us send out the questionnaire to your contact base, so that we can reach a broader population of CISOs, you are invited to join the team and your company can be listed as one of the contributors to the project. (to place your logo as sponsor organization please see sponsorship opportunities below) (in alphabetical order)

Checkmarx
EC Council
ISACA Macau
(ISC)2 Japan: https://www.isc2.org/japan/Default.aspx
Japan CISO Association: http://www.cisojapan.org/en/about.html
Japan Association of New Economy: http://jane.or.jp/english/
Japan Network Security Association: http://www.jnsa.org/
MIS Training Institute
WASForum: http://wasforum.jp

your company name here

OWASP CISO Survey Project

OWASP CISO Survey and Report

Report 2013

New CISO Survey 2014 Questionnaire is out!

Questions and getting involved

Licensing

Core Content

Presentation

Project Leader

Related Projects

Quick Access

News and Events

In Print

Classifications

Currently under Discussion

Draft of CISO Survey 2014 Questionnaire

old version 2013

Current version

Previous versions

Contributors for the CISO Survey 2014

Volunteers for the CISO Survey 2013

Contributing organisations

Sponsors

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools