“OWASP Top 10 is the most commonly referenced set of Web application security vulnerabilities in the industry. With the open community of OWASP, members contribute knowledge and information on these flaws and provide on-going guidance on how to find and fix them. The result is a body of rich content, deep in Web application security expertise. TeamMentor OWASP Edition and the OWASP Top 10 Threats and Mitigations CBT incorporates this content in a concise, easy-to-access format and gives it back to the community as our contribution,” said Fred Pinkett, vice president of product management, Security Innovation. “This is yet another critical step in our mission to educate and provide guidance on understanding where threats are, so IT architects can efficiently build the necessary security into applications and reduce application security risk.”
Security Innovation’s new TeamMentor OWASP Edition is a Web-based product that guides users on best practices as they design, code, and test; helping them integrate security into the applications and the development process itself. The exact guidance needed is readily accessible, since it can be filtered by functional role, technology, any of the Top 10 threats, and several other options with a single mouse click. TeamMentor OWASP Edition contains more than 250 knowledge assets; code snippets, checklists and how-to’s that ensure development teams conduct design, coding and testing properly to eliminate OWASP Top Ten Vulnerabilities.
The content and authoring component of TeamMentor OWASP Edition is freely available as open-source and can be used to customize best practices to comply with an organization’s internal policies. Security Innovation will provide users with updates on the most pressing application security issues as they are updated by OWASP. OWASP Top 10 Threats and Mitigations CBT can be consumed on-line or downloaded as a Sharable Content Object Reference Model package for integration into an existing LMS (learning management system). Both TeamMentor OWASP Edition and the OWASP Top 10 Threats and Mitigations eLearning course are available from either the OWASP or Security Innovation Web sites.
About Security Innovation
Security Innovation is an established leader in the application security and cryptography space. For over a decade the company has provided products, training and consulting services to help organizations build and deploy more secure systems and improve the process by which their applications are built.
Security Innovation built upon its core competencies in application security with the acquisition of NTRU CryptoSystems in 2009, a company that developed proprietary, standardized algorithms. This resulted in the strongest and fastest public key cryptography available and the means to overcome historical performance barriers that have plagued the encryption industry. With these core strengths intact, Security Innovation is in a position to help organizations protect their data at two critical points: while applications are accessing it and during transmission. The company’s flagship products include TeamProfessor, the industry’s largest library of application eLearning courses, and TeamMentor, a web-based secure development methodologies product.