Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest...

15
1 Infopercept Application Security Approach

Transcript of Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest...

Page 1: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

1Infopercept

ApplicationSecurity Approach

Page 2: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

Highest Security Risk

Page 3: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

Breakdown of the cost of web application attacks

58%

Revenue losses because customer-facing services

were not available

12%

Lost user productivity

39%

Technical Support andincident response costs

20%

Disruption to normal operations

20%

Damage or theft of IT assets and infrastructure

Page 4: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

4

2. WHAT IS AN APPLICATION SECURITY?

Page 5: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

3. APPROACH

Page 6: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

4.Methodology for

Application Security

Scope / Goal Definition

Threat Assessment

Application Discovery

Deliverables

Vulnerability Assessment

Exploitation Attempts

Infrastructure Analysis

Page 7: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

1. Scope/Goal Definition

Page 8: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

2. Application Discovery

Page 9: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

3. Infrastructure

Analysis

Page 10: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

4. Threat Assessment

Page 11: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

5. Vulnerability Assessment

Page 12: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

6. Exploitation Attempts

Page 13: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

7. Deliverables

Page 14: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses
Page 15: Application Security Approach - Infopercept · Infopercept Application Security Approach. Highest Security Risk. Breakdown of the cost of web application attacks 58% Revenue losses

THANK YOU

https://www.infopercept.com/

INF3510 Information Security L12: Application Security · INF3510 Information Security L12: Application Security Audun Jøsang University of Oslo Spring 2017 . Outline • Application

INF3510 Information Security L12: Application Security · INF3510 Information Security L12: Application Security Audun Jøsang University of Oslo Spring 2017 . Outline • Application

Data and Application Security for Distributed Application ...candan/papers/chapterfinal.pdf · Data and Application Security for Distributed Application ... Security for Distributed

Data and Application Security for Distributed Application ...candan/papers/chapterfinal.pdf · Data and Application Security for Distributed Application ... Security for Distributed

Application security overview

Application security overview

Vulnerability & Penetration Test - Infopercept

Vulnerability & Penetration Test - Infopercept

MANAGING APPLICATION SECURITY...AN APPLICATION SECURITY PROGRAM MANAGING APPLICATION SECURITY PAGE 13 What do you use to track the effectiveness of your application security program?

MANAGING APPLICATION SECURITY...AN APPLICATION SECURITY PROGRAM MANAGING APPLICATION SECURITY PAGE 13 What do you use to track the effectiveness of your application security program?

Application Security Standard_RequirementsChecklist

Application Security Standard_RequirementsChecklist

Application Security Fundamentals - Software Secured...Application Security Fundamentals – SS101 This beginner’s course is the perfect introduction to application security topics

Application Security Fundamentals - Software Secured...Application Security Fundamentals – SS101 This beginner’s course is the perfect introduction to application security topics

Security Build Application Security into the Entire SDLC · 2018-09-06 · Security Brochure Build Application Security into the Entire SDLC The Fortify suite of application security

Security Build Application Security into the Entire SDLC · 2018-09-06 · Security Brochure Build Application Security into the Entire SDLC The Fortify suite of application security

SDF-ISMS copy - Infopercept

SDF-ISMS copy - Infopercept

Application Security 101web.uvic.ca/~garyperkins/Lecture 08 - Application Security 101.pdf · Application Security 101 Tanya Janca Security Trainer and Coach at SheHacksPurple.dev

Application Security 101web.uvic.ca/~garyperkins/Lecture 08 - Application Security 101.pdf · Application Security 101 Tanya Janca Security Trainer and Coach at SheHacksPurple.dev

Network Security Application Security Security Management ...

Network Security Application Security Security Management ...

Application Security Pitfalls

Application Security Pitfalls

Database Application Security Models Database Application Security Models 1.

Database Application Security Models Database Application Security Models 1.

Mobile Application Security

Mobile Application Security

Security Application

Security Application

OWASP Application Security – Building and Breaking ... · Ralph Durkee OWASP Application Security 2015 (c) Creative Commons 3.0 5 Agenda Why Application Security? Application Penetration

OWASP Application Security – Building and Breaking ... · Ralph Durkee OWASP Application Security 2015 (c) Creative Commons 3.0 5 Agenda Why Application Security? Application Penetration

Designing SAP Application Security - United States · PDF fileTitle: Designing SAP Application Security Author: Protiviti Subject "SAP, SAP security, SAP application security, SAP

Designing SAP Application Security - United States · PDF fileTitle: Designing SAP Application Security Author: Protiviti Subject "SAP, SAP security, SAP application security, SAP

Promoting Application Security within Federal Government · OWASP 5 Application Security Best Practices Application Security Training for Developers/Managers ... V3 - Session Management

Promoting Application Security within Federal Government · OWASP 5 Application Security Best Practices Application Security Training for Developers/Managers ... V3 - Session Management

Application Security Platform for PeopleSoft · Application Security Platform for PeopleSoft Appsian’s Application Security Platform offers PeopleSoft users a contextual, granular-level

Application Security Platform for PeopleSoft · Application Security Platform for PeopleSoft Appsian’s Application Security Platform offers PeopleSoft users a contextual, granular-level

Html5 Application Security

Html5 Application Security