by Richard Barrus | Sep 19, 2019 | Application Security
Reading Time: 3 minutes
Version 4.0 of the Open Web Application Security Project (OWASP) Application Security Verification Standard (ASVS) introduces many significant changes, including streamlining and restructuring the security verification levels. In...
by Richard Barrus | Sep 6, 2019 | Penetration Testing
Reading Time: 2 minutes
If you’re involved in web application security, you’ve probably heard of the Open Web Application Security Project (OWASP) and its popular Top 10 list of vulnerabilities. But you may not be as familiar with a parallel effort that in...
by Richard Barrus | Aug 16, 2017 | InfoSec Strategies
Reading Time: 2 minutes
As I blogged about back in March, Pivot Point Security will soon be using the OWASP ASVS (Application Security Verification Standard) across its application security testing practice. We are proud to be among the first information...
by Richard Barrus | Feb 7, 2017 | InfoSec Strategies
Reading Time: 3 minutes
During a recent audit, I saw a problem with AppSec (application security) testing in the client’s software development lifecycle. They were embracing DevOps practices (the integration of software Development and IT Operations), but...