Organizations must have a clear understanding of how secure their applications are. But what is the best approach to maximize their value and level of security assurance?
Join us for the 4th TECH Talk in this webinar series:
Modern Approaches to Penetration Testing
Wednesday November 15 | 16:00 GMT, 11:00 EDT
There are several ‘traditional’ ways by which security assurance can be achieved for applications. This includes black-box penetration testing, threat modelling, code reviews, etc. But in the real world there are constraints such as time, cost and amount of information that can be shared with third parties. Whether you are coming from a boardroom, technical or compliance background, the question is always "how can we get a high level of security assurance and still work within these constraints?”.
This talk will discuss a process of security testing referred to as "Hybrid Security Assessments" – an integrated approach to provide flexibility and maximize value. Using real life examples from previous assessments, we will explore some security issues which would likely have been missed with the usual ‘traditional’ black-box penetration testing approach. There will also be an opportunity to explore some of the tools and techniques we have developed, which enable us to provide clients with maximum coverage within limited timescales.
Attendees will learn:
- How to make an informed decision when requesting penetration tests
- Understand the benefits of hybrid security assessment over traditional black-box
Who should attend:
- Information security professionals
- Risk, compliance and audit professionals
About this series:
Stay top of your proactive cybersecurity defenses with our 30-minute TECH Talk webinar series. This monthly series will feature brief 30-minute discussions with cybersecurity experts who will present different technical testing solutions and provide actionable ways for organizations to proactively sharpen their cyber defenses.
Upcoming 30-minute TECH Talks:
- December 2017 - to be announced shortly.
Senior Manager, Gotham Digital Science, a Stroz Friedberg company
Manish Saindane is a Senior Manager at Gotham Digital Science, a Stroz Friedberg company. He has over 13 years of hands-on experience in cybersecurity consulting for major organizations across several verticals worldwide. He has spoken at conferences such as Black Hat and InfoSecurity India. His core area of expertise is Application Security.
Cyber risk is a top concern for enterprises.
According to the 2017 North America Cyber Risk Transfer Comparison Report:
- 87% of respondents believe that cyber liability is one of the top 10 business risks for their organisations
- 24% of organisations have cyber insurance coverage
- $3.6M is the average economic impact of a material or significantly disruptive security exploit or data breach