Virtual Cyber & Technology Risk Management Forum

What About Code Reviews?

• Even more importantly… • Inside Look at the issue before it becomes a software product • Has your vendor had a code review performed for the system/application you’re using? • Code Review vs Web Application Assessment • OWASP – Open Web Application Security Project o https://www.owasp.org/index.php/Main_Page o THE standard for online web application security • In our experience, most orgs do NOT have their web apps tested against OWASP standards.

© 2020 SBS CyberSecurity, LLC www.sbscyber.com

41