Jun 10, 2020 SOURCE: PR NewsWire

Is the OWASP Top 10 Really All You Need for Web App Security?

HAMILTON, N.J., June 10, 2020 /PRNewswire-PRWeb/ -- The OWASP Top 10 is probably the world's most widely referenced web application security guidance. But is it the guidance your business should be using? Who and what is the OWASP Top 10 actually intended for? What other options are there? The latest episode of The Virtual CISO Podcast from Pivot Point Security goes straight to the source at OWASP to uncover why you should probably rethink the OWASP Top 10.

The Open Web Application Security Project's (OWASP) Top 10 Web Application Security Risks has long been--in OWASPs' own words--"a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications."

But are teams using the OWASP Top 10 as its creators intend? Is it really the "gold standard" for verifying that a web application is secure? Or is it intended to be just a starting point? After all, it tells us more about what not to do than about how to build or test secure web applications.

To clarify OWASP's intended guidance and use cases for application developers, testers and security teams, Pivot Point Security's CISO and Managing Partner, John Verry, speaks with Andrew van der Stock, Senior Application Security Leader at OWASP and a primary contributor to the OWASP Top 10, in the latest episode of The Virtual CISO Podcast.

Andrew and John's conversation will give business and technology leaders as well as developers and security practitioners a very clear understanding of how best to use the OWASP Top 10, including:

    --  Why the OWASP Top 10 was created and its intended purpose
    --  When to move from the OWASP Top 10 to the OWASP Application Security
        Verification Standard (ASVS)
    --  The application security "language" and terminology reference points
        that executives need to stay on the same page with technologists when
        discussing AppSec guidance

If your team uses the OWASP Top 10 today, or is looking for ways to improve web application security, this podcast will give you definitive, expert advice to steer you in the right direction.

To access this episode and many more in Pivot Point Security's Virtual CISO podcast series anytime, visit this page: https://www.pivotpointsecurity.com/podcasts/the-virtual-ciso-podcast-andrew-van-der-stock-the-owasp-top-ten-is-great-but-is-it-enough/.

About Pivot Point Security
Since 2001, Pivot Point Security has been helping organizations understand and effectively manage their information security risk. We work as a logical extension of your team to simplify the complexities of security and compliance. We're where to turn--when InfoSec gets challenging.

SOURCE Pivot Point Security

Related News

Growth Opportunities for Blockchain in Cyberwarfare and National Security 2022: Blockchain to Fortify Military Strategy - ResearchAndMarkets.com

CDNetworks Releases State of the Web Security for H1 2020: Web Application Attacks Boosted Over 800%

iboss Receives 2020 Cloud Computing Security Excellence Award

Upstream Security Partners With Amazon Web Services to Enhance Automotive Cybersecurity

SaaS Startups--Will Your Cybersecurity Posture Help or Hurt Your Business Growth? Find Out on "The Virtual CISO Podcast" from Pivot Point Security

Greater China Web Application Firewall Solutions Market 2020 - Companies Able to Provide Both On-Premises and Cloud-Based Deployment Options Will Be in a Better Position to Grow

Cyber Security Technologies and Global Markets Analyis 2020-2024

Cyber Security: Technologies and Global Markets

View all News

Latest Procurements

Herbicide resistance status of grain and cotton cropping regions - strategic insights for RDE

Photo Award Submission Management System

Provision for a SaaS Photo Management System

Employee Assistance Program (EAP)

The procurement project NS1230 for the Employee Assistance Program (EAP) underscores ABC's unwavering commitment to employee well-being and organisational resilience. The main purpose of this project is to secure a...

View all Procurementsp

Agenda

June

FranceParc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024, 17 - 21 June 2024, Parc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024 There can be no sustainable world without peace and security. Founded in 1967, the exhibition...

May

Paris Marriott Rive Gauche & Conference Center

Future Artillery, 21-23 May 2024, Paris Marriott Rive Gauche & Conference Center, France

DELIVERING FIRES IN THE MULTI-DOMAIN BATTLESPACE As artillery reasserts itself as the ‘King of Battlefield’ in the wake...

May

United Arab EmiratesADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR Abu Dhabi 2024, 21-23 May 2024, ADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR ACCELERATING TRANSFORMATION IN THE NATIONAL SECURITY ECOSYSTEM ISNR Abu Dhabi is the region’s most trusted...

View All Events

Companies

Nextwill Co. Ltd.

Industrias Onar Ltda.

United Aluminum & Metal Coating Co. (UAMCCO)

View All Companies