Smart Application Security Score Card
Date of release: 05/14/2010
There are several instances where application stakeholders struggle hard to identify
necessary security SDLC activities for their applications and products. Apparently
cost has always been a key deciding factor while engaging security activities at various stages of SDLC. Hence, most stakeholders with budget constraints tends to
engage security activity that comes cheap and falls within the limited budget essentially
to satisfy internal compliance needs.
C&S Smart score card intends to help application (or product) stake holders
to self determine whether a specific application requires security assessment or
not. Additionally it also helps assign weightage for individual security activities
necessary for the application which in turns helps application stakeholders priorities
those activities keeping the cost factor in mind.
Note:
This is a beta release and the score
card requires some more tweaking to make it flawless. I would sincerely appreciate
your feedback and suggestions. Do feel free to drop a note in my email id d3basis.m0hanty@gmail.com
incase you find an issue. I will try my best to address all issues before next release.
[Download]