This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects/OWASP Application Security Guide For CISOs Project"

From OWASP
Jump to: navigation, search
(Changing template temporarily tomake the page look ok while we diagnose issue with root template)
 
(15 intermediate revisions by the same user not shown)
Line 2: Line 2:
 
| project_name =OWASP Application Security Guide For CISOs Project
 
| project_name =OWASP Application Security Guide For CISOs Project
 
| project_home_page =OWASP_Application_Security_Guide_For_CISOs_Project
 
| project_home_page =OWASP_Application_Security_Guide_For_CISOs_Project
| project_description =The purpose of this document is to guide the CISO in managing application security from initial problem statement to delivery of the solution. We start this journey with the creation of the business cases for investing in application security following with the awareness of threats targeting applications, the identification of the economical impacts, the determination of a risk mitigation strategy, the prioritization of the mitigation of the risk of vulnerabilities, the selection of security control measures to mitigate risks, the adoption of secure software development processes and maturity models and we conclude this journey with the selection of metrics for reporting and managing application security risk.  
+
| project_description =*The purpose of this document is to guide the CISO in managing application security from initial problem statement to delivery of the solution. We start this journey with the creation of the business cases for investing in application security following with the awareness of threats targeting applications, the identification of the economical impacts, the determination of a risk mitigation strategy, the prioritization of the mitigation of the risk of vulnerabilities, the selection of security control measures to mitigate risks,the adoption of secure software development processes and maturity models and we conclude this journey with the selection of metrics for reporting and managing application security risk.  
  
 
'''''Draft Version:'''''
 
'''''Draft Version:'''''
Line 8: Line 8:
 
[[Application Security Guide For CISOs]]
 
[[Application Security Guide For CISOs]]
  
| project_license =Creative Commons Attribution ShareAlike 3.0 License  (best for documentation projects)
+
| project_license = [http://creativecommons.org/licenses/by-sa/3.0/ '''Creative Commons Attribution Share Alike 3.0''']
 
| leader_name1 =Marco Morana
 
| leader_name1 =Marco Morana
| leader_email1 =Marco.Morana@owasp.org
+
| leader_email1 =Marco.M.Morana@gmail.com
 
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp_application_security_guide_for_cisos
 
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp_application_security_guide_for_cisos
 
| project_road_map = https://www.owasp.org/index.php/Projects/OWASP_Application_Security_Guide_For_CISOs/Roadmap
 
| project_road_map = https://www.owasp.org/index.php/Projects/OWASP_Application_Security_Guide_For_CISOs/Roadmap
 +
| presentation_link = https://www.owasp.org/index.php/File:OWASP-NYC-CISO-Guidevs1.pptx
 +
| links_url1 = https://www.owasp.org/index.php/OWASP_Application_Security_Guide_For_CISOs_Project#tab=Releases
 +
| links_name1 = Project Releases
 +
| links_url2= https://www.owasp.org/index.php/Projects_Reboot_2012
 +
| links_name2 = Project Funding
 +
| links_url3 = https://www.owasp.org/index.php/OWASP_Application_Security_Guide_For_CISOs_Project#tab=Acknowledgements
 +
| links_name3 = Acknowledgements
 
}}
 
}}

Latest revision as of 21:43, 15 November 2013

what is this project?
Name: OWASP Application Security Guide For CISOs Project (home page)
Purpose:
  • The purpose of this document is to guide the CISO in managing application security from initial problem statement to delivery of the solution. We start this journey with the creation of the business cases for investing in application security following with the awareness of threats targeting applications, the identification of the economical impacts, the determination of a risk mitigation strategy, the prioritization of the mitigation of the risk of vulnerabilities, the selection of security control measures to mitigate risks,the adoption of secure software development processes and maturity models and we conclude this journey with the selection of metrics for reporting and managing application security risk.

Draft Version: More info about this project can be found in the introductory page of the guide Application Security Guide For CISOs

License: Creative Commons Attribution Share Alike 3.0
who is working on this project?
Project Leader(s):
  • Marco Morana @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation: View
Mailing list: Mailing List Archives
Project Roadmap: View
Main links:
Key Contacts
  • Contact Marco Morana @ to contribute to this project
  • Contact Marco Morana @ to review or sponsor this project