nothing

Webinar |

What To Include in a New Risk-Scoring Model For Applications—and How To Use It

Speakers: Jeff Williams, David Lindner, Katharine Watson, Patrick Spencer

Feb. 3, 2021 @ 10 AM PT | 1 PM ET

 

CONTRAST GUESTS:
Jeff Williams, CTO and Co-Founder
David Lindner, CISO
Katharine Watson, Sr. Data Scientist

MODERATOR:
Patrick Spencer, Ph.D., Editor in Chief, Inside AppSec Podcast

Multiple elements must be included in an application risk-scoring model—which must also be easy to implement and use.

Find out why simply assigning a severity rating is inadequate and how other models are too complex for real-world use cases. A different industry risk-scoring model is needed—and one that is derived from the broader cybersecurity community.

Discover how Contrast is developing an open-source risk-scoring algorithm that will be used as the basis for its RiskScore. Attendees of the webinar will learn:

  • Why current risk-scoring models are inadequate
  • What elements are needed in a risk-scoring model
  • What elements are included in the initial risk-scoring algorithm
  • How the DevOps and AppSec communities can contribute to the open-source algorithm
  • What vulnerability types pose the highest risk today and how they have trended over the past 12 months (Contrast RiskScore)
  • How to apply the risk-scoring model in different environments
  • Future areas of exploration around attack types and application languages

 

 

On Demand Webinar

Contrast Security is the leader in modernized application security, embedding code analysis and attack prevention directly into software. Contrast’s patented deep security instrumentation completely disrupts traditional application security approaches with integrated, comprehensive security observability that delivers highly accurate assessment and continuous protection of an entire application portfolio. This eliminates the need for disruptive scanning, expensive infrastructure workloads, and specialized security experts. The Contrast Application Security Platform accelerates development cycles, improves efficiencies and cost, and enables rapid scale while protecting applications from known and unknown threats.