As part of its Application Security MythBusters series, Cenzic interviewed Rob Tate, the CISO at Renesys.
When Cenzic’s Chief Marketing Officer, Mandeep Khera, asks Rob about his general observation about the state of Web application security, he answers “poor”.
Mr. Pate claims that poorly designed applications in the market space have led to a spike in data breaches. Despite the industry moving in the right direction in terms of improved processes, there isn't much light at the end of the tunnel.
In order for middle managers to convice upper management to provide adequate budget for Web application security, Mr. Pate suggests three things:
- Education – everyone who has a vested interest in security needs to be properly educated about the risks inherent to Website security
- Metrics – middle management must have a way to measure progress towards a security goal
- ROI – once metrics are in place, an ROI is far easier to establish, or at the very least, a decent case can be made for such investment dollars.
Listen to the full 8 minute podcast today!
If you have any other questions or topic suggestions about the latest myths out there, send an email to: MythBusters@cenzic.com
by
Erin Swanson, Marketing
Eswanson@cenzic.com | 
