The Honeymoon’s Over: Living with Your Application Pen Test Results

Presented by

Charles Henderson, Director Application Security Services; Ryan Barnett, Lead Security Researcher SpiderLabs at Trustwave

About this talk

Like everyone else, you know that application penetration tests are a critical part of any reasonable security program. So you setup a bake-off and find a qualified security company to test your applications. Things are going well and you start to see results show up in the reporting portal (or, if it’s still 2005, you get PDF reports). But identifying vulnerabilities is only half the battle. Once you know where your problems are, what do you do next? Schedule fixes for the next code deployment? Create virtual patches? What about long-term solutions? Find out what you can expect from an application penetration test, and what to do with the results in this hour-long session led by Trustwave SpiderLabs experts Charles Henderson, Director of Application Security Services, and Ryan Barnett, Lead Security Researcher. You’ll gain insight into: •Common and serious vulnerabilities uncovered by testing •Immediate tactical responses to remediation •Long-term strategic initiatives to improve application security You’ll walk away with actionable information on how to take full advantage of an application penetration test to strengthen application security throughout your organization.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (859)
Subscribers (48331)
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in various e-business and security skills. It is the owner and developer of the world famous Certified Ethical Hacker (C|EH), Computer Hacking Forensics Investigator (C|HFI) and EC-Council Certified Security Analyst (E|CSA)/License Penetration Tester (L|PT) programs, and various others offered in over 60 countries around the globe.