Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Software Security Metrics - Developing Key Indicators for Executives

OWASP Foundation via YouTube

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore effective software security metrics in this 50-minute conference talk from AppSec California 2016. Learn techniques to change conversations with executives about software security, encouraging them to ask the right questions and receive answers demonstrating progress towards meaningful objectives. Discover a progression of software security capabilities and corresponding metrics for different maturity levels. Gain insights on developing key metrics for your unique software security program through a detailed example. Delve into topics such as risk management objectives, measurement vs. metrics, phases of metrics, defects, risk tolerance, and coverage. Benefit from Caroline Wong's expertise as a thought leader in security strategy, operations, and metrics, drawing from her experience at companies like Cigital, Symantec, Zynga, and eBay.

Syllabus

Intro
Agenda
Questions from executives
Why Metrics
Risk Management Objectives
Measurement vs Metric
Phases of Metrics
Defects
Bad Scenarios
Vanity Metrics
Metrics Without Context
Metrics With Executives
Risk Management
Policy Standards Outreach
Software Environment
Software Security Capabilities
Risk Tolerance
Coverage

Taught by

OWASP Foundation

Reviews

Start your review of Software Security Metrics - Developing Key Indicators for Executives

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.