Security Risk Advisors

SecureWorld: Building a Mobile App Security Risk Management Program

May 24, 2012 | Posted in Red Teams by Chris Salerno

We recently co-presented a case study with Vas Rajan (CISO, INGDirect) discussing how we jointly developed a security risk management program for customer-facing mobile apps. We discussed the security risks and challenges, and a programmatic approach to assessing and defending the infrastructure and apps themselves, including:

  • Merits and challenges of using Mobile Enterprise Application Platforms (MEAP)
  • Creating a mobile app security testing capability
  • Clear, cross-platform app development security standards and working with app developers
  • Defending and monitoring the mobile service delivery network

Download Slides: Security Risk Advisors - SecureWorld - May 2012