[Global_industry_committee] OWASP referenced - page 8

Marco M. Morana marco.m.morana at gmail.com
Fri Jul 15 14:38:30 EDT 2011


Kate

 

Thanks for sharing. I also shared this report with the senior management at
my company since CIOs in general pay attention to Forrester and Gartner say.
>From that perspective, this reference is a good PR for OWASP in general.

 

Specifically, it is also good for OWASP to be referenced by Forrester as
organization like SANS that can help" to hammer out a set of certification
requirements and work with vendors to ensure that proper verification of the
requirements can take place".

 

I know OWASP produced the contract annex for contracting clauses with
vendors and ASVS to be used for requirements for security verification and
in procurement of security services with third parties like mentioned here.

 

Maybe this is an opportunity to take the "bait" and point Forrester more
specifically to ASVS? 

 

On the other hand does SANS has ? similar resources related to " set of
certification requirements" to work with vendors to ensure that proper
verification?

 

Regards

 

Marco Morana

OWASP Cincinnati 

From: global_industry_committee-bounces at lists.owasp.org
[mailto:global_industry_committee-bounces at lists.owasp.org] On Behalf Of Kate
Hartmann
Sent: Friday, July 15, 2011 10:18 AM
To: colin.watson at owasp.org
Cc: global_industry_committee at lists.owasp.org
Subject: [Global_industry_committee] OWASP referenced - page 8

 

 

 

Kate Hartmann

Operations Director

301-275-9403

www.owasp.org <http://www.owasp.org/>  

Skype:  Kate.hartmann1

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/global_industry_committee/attachments/20110715/cf33c633/attachment.html 


More information about the Global_industry_committee mailing list