The slides from my SOURCE Boston 2011 presentation “The Real Cost of Software Remediation” are now online:
We’ve been doing remediation work for a number of years so I’m happy to start talking about more of the things we’ve seen. I’ve maintained for a while that finding vulnerabilities is usually pretty easy and that fixing vulnerabilities is where organizations need to focus more effort. Hopefully some of the lessons we have learned will help other organizations start to plan and execute remediation projects of their own. I think the remediation project framework we put together, when combined with some of the remediation statistics we are releasing should help. We have these and a number of other resources in our online Remediation Resource Center.
dan _at_ denimgroup.com