This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Application Security Program Quick Start Guide"

From OWASP
Jump to: navigation, search
(The Application Security Program Quick Start Guide)
(The Application Security Program Quick Start Guide)
Line 16: Line 16:
 
** [[AppSec Quick Start Guide: Audience|Audience]]
 
** [[AppSec Quick Start Guide: Audience|Audience]]
  
[[Day 1]]
+
== [[Day 1]] ==
 
[[''''' **Key Activities: ''''']]
 
[[''''' **Key Activities: ''''']]
 
***Evaluation
 
***Evaluation
Line 24: Line 24:
 
*IT Ops
 
*IT Ops
 
*Engineering Groups (inc. QA)/Development
 
*Engineering Groups (inc. QA)/Development
[[Day 2]]
+
== [[Day 2]] ==
 
''''' **Key Activities: '''''  
 
''''' **Key Activities: '''''  
 
*Asset Discovery
 
*Asset Discovery
 
*Asset Risk Prioritization
 
*Asset Risk Prioritization
 
*Communication Plan
 
*Communication Plan
[[Day 3]]
+
== [[Day 3]] ==
 
''''' **Key Activities: '''''  
 
''''' **Key Activities: '''''  
 
*Vulnerability Assessments
 
*Vulnerability Assessments
 
*Vulnerability delivery
 
*Vulnerability delivery
[[Day 4]]
+
== [[Day 4]] ==
 
''''' **Key Activities: '''''
 
''''' **Key Activities: '''''
 
*Measured Metrics
 
*Measured Metrics

Revision as of 16:20, 12 December 2014


The Application Security Program Quick Start Guide

Placeholder

Contents

Day 1

''''' **Key Activities: '''''

      • Evaluation

*Key Questions:

  • Management
  • Security
  • IT Ops
  • Engineering Groups (inc. QA)/Development

Day 2

**Key Activities:

  • Asset Discovery
  • Asset Risk Prioritization
  • Communication Plan

Day 3

**Key Activities:

  • Vulnerability Assessments
  • Vulnerability delivery

Day 4

**Key Activities:

  • Measured Metrics

Day 5

**Key activities:

  • Compensating Controls
  • Mitigating Controls
  • Remediation Prioritization

Licensing

The OWASP Application Security Program Quick Start Guide is free to use. It is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International license. You are free to:

  • Share — copy and redistribute the material in any medium or format
  • Adapt — remix, transform, and build upon the material for non-commercial use

The licensor cannot revoke these freedoms as long as you follow the license terms.


Credits

Project lead and authors

Other contributors

Co-authors, contributors and reviewers:

Further Information

Application Security Program Quick Start Guide

The OWASP Application Security Program Quick Start Guide is also available as


For full information about the Application Security Program Quick Start Guide, including mailing list details, the forward plan, how to contribute, the project status, and alternative media, see the project page:



Retrieved from "https://wiki.owasp.org/index.php?title=Application_Security_Program_Quick_Start_Guide&oldid=186906"