OWASP CISO Survey Project

From OWASP
Revision as of 15:34, 6 February 2014 by Tgondrom (Talk | contribs)

Jump to: navigation, search
[edit]

CISO-Guide-header.jpg

OWASP CISO Survey and Report

Among application security stakeholders, Chief Information Security Officers (CISOs),are responsible for application security from governance, compliance and risk perspectives. The OWASP CISO Survey provides tactical intelligence about security risks and best practices to help CISOs manage application security programs according to their own roles, responsibilities, perspectives and needs.

Introduction

Objectives

Licensing

The OWASP Application Security Guide For CISOs is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

© OWASP Foundation


Core Content

The CISO Survey Report 2013 includes:

  • Threats and risks
  • Investments and challenges
  • Tools and technology
  • Governance and control


Presentation

Link to presentation at the AppSecUS 2013 in NYC

Project Leader

Tobias Gondrom


Related Projects


Quick Access

News and Events


In Print

Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files DOC.jpg


Volunteers

The Application Security Guide For CISOs Project was authored, edited and reviewed by a worldwide team of volunteers. The primary contributors to date have been:

  • Tobias Gondrom
  • Marco Morana
  • Stephanie Tan
  • Colin Watson

And many more helping hands from OWASP chapters around the world and the former Global Industry Committee, providing input, designing questions, translating and sending out the survey questions around the globe. Thank you all! We couldn't have done it without you!


As of January 2014, the priorities are:

  • Announce and promote v1.0 at AppSec APAC, EU and US and CISO events
  • Gain support and additional contributors
  • Initiate the next version 2014 and secure to reach out to a larger audience

Involvement in the development and promotion of the CISO Survey Report is actively encouraged. You do not have to be a security expert in order to contribute. Some of the ways you can help:

  • Review the text
  • Graphical design for the report and diagrams
  • Send out Survey to the Security Manager Community
  • Data Analysis

Past Roadmap:

  • Begin 2013: Send out Survey
  • Sep-30, 2013: Close Survey - done
  • Oct 2013: analyze data and write report
  • Jan 2014: release of the CISO report 2013


Future Roadmap:

  • March 2014: prepare the next revision of the CISO survey
  • April 2014: start sending out questionnaires
  • September 2014: Close Survey 2014
  • Oct 2014: Analyze Data and write report
  • Dec 2014: release CISO report 2014


Please participate through the project's mailing list.


Current version

v1.0 (Stable) released in January 2014


Previous versions

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP_CISO_Survey (home page)
Purpose: "CISO Survey and later the CISO Report on Application and Information Security trends.

Also providing input and data for the CISO guide. "

License: Creative Commons Attribution ShareAlike 3.0 License (best for documentation projects)
who is working on this project?
Project Leader(s):
  • Tobias Gondrom @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
  • Contact Tobias Gondrom @ to contribute to this project
  • Contact Tobias Gondrom @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
OWASP CISO Survey Report 2013 1.0 - Jan 2014 - (download)
Release description: Version 2013 1.0

description Version 2013 1.0

Rating: Projects/OWASP CISO Survey/GPC/Assessment/OWASP CISO Survey Report 2013 1.0
last reviewed release
Not Yet Reviewed


other releases