This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Application Security Program Quick Start Guide

From OWASP

Revision as of 17:43, 1 December 2014 by Gabrielgumbs (talk | contribs) (Created page with "__NOTOC__ {| width="100%" cellspacing="0" cellpadding="10" |- valign="top" | width="70%" style="background:#d9e9f9" | = Application Security Program Quick Start Guide = Pla...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Application Security Program Quick Start Guide

Placeholder

Contents

‘’’*Day 1 **Key Activities:

- - Evaluation

*Key Questions:

- - Management
  - Security
  - IT Ops
  - Engineering Groups (inc. QA)/Development

*Day 2 **Key Activities:

- - Asset Discovery
  - Asset Risk Prioritization
  - Communication Plan

*Day 3 **Key Activities:

- - Vulnerability Assessments
  - Vulnerability delivery

*Day 4 **Key Activities:

- - Measured Metrics

*Day 5 **Key activities:

- - Compensating Controls
  - Mitigating Controls
  - Remediation Prioritization

Licensing

The OWASP Application Security Guide For CISOs is free to use. It is licensed under the Creative Commons Attribution-ShareAlike 3.0 license. You are free to:

Share — copy and redistribute the material in any medium or format
Adapt — remix, transform, and build upon the material The licensor cannot revoke these freedoms as long as you follow the license terms.

Retrieved from "https://wiki.owasp.org/index.php?title=Application_Security_Program_Quick_Start_Guide&oldid=186295"