Saturday, July 26, 2008

 

OWASP Maturity Model Project

I will be starting on my second OWASP Project which is to create a maturity model to help enterprises index themselves in terms of maturity related to application security. We hope to have something published by the end of the year that will aid IT executives in understanding areas in which they need to focus.

If you are interested in contributing, please visit the OWASP web site and subscribe to the listserv. In the meantime, I will be spending cycles on figuring out how to get Gartner, Forrester and other industry analyst firms to pay more attention to security (other than Microsoft Patch Tuesdays). After all, if they aren't paying attention to it, then software vendors aren't going to either and the industry will remain insecure...






<< Home
| | View blog reactions


This page is powered by Blogger. Isn't yours?