User:Jochen.klein

My name is Jochen Klein and I am an Information Risk Consultant. At the moment I am working as an external consultant in a german bank. I am very interested in Application Security Management. Before working as an Information Risk Consultant is was working in small software security company and did Penetration-testing, soucre code analysis and threat modeling. Since this measures itself are very strong weapons against vulnerabilities they need to be coordinated and completed with other acitivities to make applications secure in a holistic view. This is why I am very interested in Application Security Management and especially the regarding ISO 27034 standard.