October 12, 2018

A Practitioner's Guide to Application Security

Business Insider

SAN FRANCISCO, Oct. 12, 2018 -- Metrics thought leader and Chief Security Strategist at Cobalt.io, Caroline Wong, released her latest research, A Practitioner's Guide to Application Security, highlighting The Modern AppSec Framework today.

Wong's practical information security knowledge stems from her in-depth experience as a Cigital consultant, a Symantec product manager, and day-to-day leadership roles at eBay and Zynga. Caroline authored the popular textbook Security Metrics: A Beginner's Guide, published by McGraw-Hill in 2011. She has been featured in the 2017 and 2018 Women in IT Security issues of SC Magazine, was named one of the Top Women in Cloud by CloudNOW and has spoken at many of the major security conferences.

"There are many frameworks and models that you could use (BSIMM, CSA CCM, ISO27017, etc.) but upon closer inspection, you might find these to be extremely long, overly complicated, and can be challenging to implement. That's why we created The Modern AppSec Framework," says Caroline Wong, Chief Security Strategist at Cobalt.io.

This concise and practical run book is less than 25 pages long and provides security and software engineering professionals with the knowledge to build and improve application security programs using straightforward approaches that work.

Comments from Industry Leaders:
"Application security goes beyond people, process and technology. Security professionals can't do it alone.They have to collaborate, engrain security in the culture, and fundamentally be part of the organizational DNA to be successful," says Ty Sbano, Head of Security at Periscope Data.

"Application security is very much a team effort. A strong program must have the right people, workflows and tools in place, and there must be a partnership with engineering teams in order to be effective," says Coleen Coolidge, Head of Trust and Security at Segment.

Original Post

Latest News

More News