Coursera Plus Annual is 40% Off — Ends June 29.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Reality Checking Your AppSec Program

via YouTube

Start learning Write review
DataCamp Ad

PowerBI Data Analyst - Create visualizations and dashboards from scratch

Learn More → CodeSignal Ad

Learn the Skills Netflix, Meta, and Capital One Actually Hire For

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Explore key insights into effective application security program management in this 25-minute conference talk from GrrCon 2016. Delve into topics such as compliance, diminishing returns, maturity versus security, the limitations of aggregates, the importance of comprehensive education beyond training, human factors in security, outcome-based approaches, and the distinction between verification and validation. Gain practical advice on improving your AppSec program and learn how to critically evaluate its effectiveness beyond traditional metrics and assumptions.

Syllabus

Intro
COMPLIANCE
DIMINISHING RETURNS
MATURITY IS NOT SECURITY
AGGREGATES HIDE UNIQUENESS
EDUCATION IS NOT JUST TRAINING
PEOPLE ARE NOT MACHINES
OUTCOMES ARE NOT EVERYTHING
VERIFICATION IS NOT VALIDATION
WHAT TO DO NOW

Reviews

Start your review of Reality Checking Your AppSec Program

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.