[Owasp-leaders] CISO AppSec Cheat Sheet

McGovern, James F. (P+C Technology) James.McGovern at thehartford.com
Mon Apr 5 09:48:12 EDT 2010


My take on CISOs

1. The vast majority of CISO's don't come from a software development
background (think network/infrastructure) and therefore a cheatsheet
would be of use to them. 

2. The vast majority of CISO's tend to wrongly separate security from
software development and therefore wouldn't even think to read SAMM. A
cheatsheet that helps bridge this wide gap is useful.

3. Increasingly, software development is occuring less and less within
large enterprises. I am finding that traditional OWASP topics aren't of
interest to many of the Hartford chapter attendees (the majority aren't
developers) and therefore we need to figure out how to appeal higher up
the foodchain.
************************************************************
This communication, including attachments, is for the exclusive use of addressee and may contain proprietary, confidential and/or privileged information.  If you are not the intended recipient, any use, copying, disclosure, dissemination or distribution is strictly prohibited.  If you are not the intended recipient, please notify the sender immediately by return e-mail, delete this communication and destroy all copies.
************************************************************



More information about the OWASP-Leaders mailing list