discovering threats to your web application with free tool from tracesecurity
TRANSCRIPT
Why is Application Security Important?
• Recent influx of large-scale data breaches makes application security top priority
• Increased scrutiny from industry standards and government agencies such as:
– National Institute of Standards and Technology (NIST)
– PCI-DSS
What is a web application risk assessment?
• A web application risk assessment is used to determine what types of controls are required to protect an application from threats
• Allows organizations to reduce exposure and maintain acceptable risk tolerance
The Risk Assessment Process
• Evaluates the likelihood and potential damage of identified threats
• Measures the individual risk level of each asset as they relate to Confidentiality, Integrity and Availability (CIA)
• Gauges the effectiveness of existing controls to limit your exposure to such risk
• Results:– Help identify which assets are most critical
– Provide a basis for prioritization
– Recommend a course for remediation
The OWASP Top Ten
• Published by OWASP since 2003
• To raise awareness and educate business managers and technical personnel on how to asses and protect against a wide range of application vulnerabilities
• Represents a consensus among many of world’s leading information security experts
TraceSecurity’s Free OWASP RA Tool
• Self service and only takes minutes
• Guides users through three easy
steps
1. Attest to controls already in place
2. Discover any present threats due to unimplemented controls
3. View and download a full Web Application Risk Assessment report of the findings
• Leverages OWASP top ten critical web application security risks
thought leadership
webinars on-demand
our blog
our monthly newsletter
www.tracesecurity.com ©2015 TraceSecurity, Inc. All rights reserved worldwide.
Connect with us!
DOWNLOAD
WATCH
READ
RECEIVE
Access more educational content from TraceSecurity,