Denim Group has been acquired by Coalfire. Learn More>>

Slides Online for Presentation: Application Portfolio Risk Ranking: Banishing FUD with Structure and Numbers

The slides from my OWASP AppSec DC presentation “Application Portfolio Risk Ranking: Banishing FUD with Structure and Numbers” are now online here:

Keeping an up-to-date and accurate application portfolio is a critical practice for application security managers.  I had an opportunity to speak with a lot of sharp folks after the presentation and got some great tips on additional things we can roll into the model.

If you would like a copy of the Excel spreadsheet used to demonstrate the model during the presentation please just email me (dan _at_

Contact us for help enumerating and risk-ranking the applications in your portfolio.


dan _at_


Posted via email from Denim Group’s Posterous

About Dan Cornell

Dan Cornell Web Resolution

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

Categories: Uncategorized

Leave a Reply

Your email address will not be published. Required fields are marked *