Slides Online for Presentation: Application Portfolio Risk Ranking: Banishing FUD with Structure and Numbers

The slides from my OWASP AppSec DC presentation “Application Portfolio Risk Ranking: Banishing FUD with Structure and Numbers” are now online here:

Keeping an up-to-date and accurate application portfolio is a critical practice for application security managers.  I had an opportunity to speak with a lot of sharp folks after the presentation and got some great tips on additional things we can roll into the model.

If you would like a copy of the Excel spreadsheet used to demonstrate the model during the presentation please just email me (dan _at_ denimgroup.com)

Contact us for help enumerating and risk-ranking the applications in your portfolio.

–Dan

dan _at_ denimgroup.com

@danielcornell

Posted via email from Denim Group’s Posterous

About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

Categories: Uncategorized

Leave a Reply

Your email address will not be published. Required fields are marked *