This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Application Security Program Quick Start Guide"

From OWASP
Jump to: navigation, search
Line 55: Line 55:
 
== Project lead and authors ==
 
== Project lead and authors ==
  
* [[User:GabrielGumbs|GabrielGumbs]]
+
* [[User:Gabrielgumbs|GabrielGumbs]]
 
* [[User:JeremiahGrossman| JeremiahGrossman]]
 
* [[User:JeremiahGrossman| JeremiahGrossman]]
 
* [[User:RobertHansen| RobertHansen]]
 
* [[User:RobertHansen| RobertHansen]]
Line 78: Line 78:
  
 
For full information about the Application Security Program Quick Start Guide, including mailing list details, the forward plan, how to contribute, the project status, and alternative media, see the project page:
 
For full information about the Application Security Program Quick Start Guide, including mailing list details, the forward plan, how to contribute, the project status, and alternative media, see the project page:
* [https://www.owasp.org/index.php/OWASP_Application_Security_Program_Quick_Start_Guide_Project the Application Security Program Quick Start Guide Project Page]
+
* [https://www.owasp.org/index.php/OWASP_Application_Security_Program_Quick_Start_Guide_Project The Application Security Program Quick Start Guide Project Page]
  
  

Revision as of 18:05, 1 December 2014


Application Security Program Quick Start Guide

Placeholder

Contents

‘’’*Day 1 **Key Activities:

      • Evaluation

*Key Questions:

      • Management
      • Security
      • IT Ops
      • Engineering Groups (inc. QA)/Development

*Day 2 **Key Activities:

      • Asset Discovery
      • Asset Risk Prioritization
      • Communication Plan

*Day 3 **Key Activities:

      • Vulnerability Assessments
      • Vulnerability delivery

*Day 4 **Key Activities:

      • Measured Metrics

*Day 5 **Key activities:

      • Compensating Controls
      • Mitigating Controls
      • Remediation Prioritization


Licensing

The OWASP Application Security Program Quick Start Guide is free to use. It is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International license. You are free to:

  • Share — copy and redistribute the material in any medium or format
  • Adapt — remix, transform, and build upon the material The licensor cannot revoke these freedoms as long as you follow the license terms.


Credits

Project lead and authors


Other contributors

Co-authors, contributors and reviewers:


Further Information

Application Security Program Quick Start Guide

The OWASP Application Security Program Quick Start Guide is also available as


For full information about the Application Security Program Quick Start Guide, including mailing list details, the forward plan, how to contribute, the project status, and alternative media, see the project page: