Now that OWASP SAMM 2.0 is out, it’s time to learn how to assess Application Security Programs against this framework. This presentation will demonstrate tools that can be used to capture and evaluate the maturity of the SDLC, as well as review some of the most effective methods for assessing maturity.
Additionally, this presentation will cover the best scorecard visualizations and methods for building and presenting Application Security Roadmaps.
- Learn how to assess against OWASP SAMM 2.0
- Identify the right approach to assessing Application Security Programs
- Review the most effective ways of presenting SAMM scores and building roadmaps
About Yan Kravchenko
Yan Kravchenko is passionate about finding ways for organizations to balance their business objectives with the ever-growing cybersecurity and regulatory challenges. Today, Kravchenko is focused on one of the latest frontiers in the field of security: application security. In this role, he is creating innovative tools and services for complex enterprises to understand their application security risks and optimize their security investments. In dealing with the ever-changing cybersecurity threat landscape, he brings the ability to interpret and apply technical, legal and business information to enable his clients to make informed decisions.
Over the past 20+ years, Kravchenko has worked through many IT and security evolutionary trends, learning different ways to evaluate, understand and remediate cybersecurity risks.