Explore the transformation of vulnerability management from a nuisance to a collaborative process in this 39-minute conference talk from AppSecCali 2019. Learn how to drive accountability, transparency, and ownership of security across engineering teams. Discover strategies for engaging stakeholders, implementing effective workflows, and creating a decentralized model that empowers engineers to make security decisions. Gain insights into using CVSS V3 scoring, setting up Jira Kanban boards, and defining key metrics for leadership. See real-world examples of dashboards, charts, and templates that can help improve your organization's vulnerability management program. Understand how to shift the mindset around security, establish accountability measures, and create a culture where security becomes everyone's responsibility.
The Art of Vulnerability Management - Transforming Security Collaboration
Overview
Syllabus
Introduction
Harshal
Alexandra
About Alexandra
Vulnerability Management
User Perspective
SelfService Accountability Culture
SelfService
Tools
JIRA
Workflow Overview
Oneoff Cases
JIRA Settings
Team Settings
Release Tag
Kanban Boards
Demo
Recap
Metrics
Metrics for Management
Culture
Training Marketing
Branding
Conclusion
Taught by
OWASP Foundation
