Overview
Explore the results of a comprehensive application security survey presented at AppSecUSA 2014 in Denver. Dive into data-driven insights on developer awareness of secure coding concepts and the impact of formal application security training. Learn how architects, developers, and QA staff grasp key application security concepts and put them into practice. Discover effective ways to tailor security training efforts based on how software developers actually learn. Gain valuable information to make fact-based decisions about security training programs and improve the overall effectiveness of application security initiatives.
Syllabus
Introduction
When Not Thinking about AppSec...
Snake Hunting Essentials
AppSec Study 1.0 Results
Overview of 2014 "2.0" Study
Approach and Survey Participants
Demographic Questions Asked
2014 Study Demographics
Key Survey Results
Change Implementation
Types of Training Received
E-Learning & Instructor-Led Training
Perceived Effectiveness of Training
Question Types
Pass Rate by Job Function: Security
What we Can Put to Work
Conclusions
Questions and Answers
Taught by
OWASP Foundation