With all the breaches and cyberattacks in the news, your executives are probably asking you: "How can we make our application security policy more effective?"
According to a recent Gartner report, "Policy is an important form of communication about risk, and the impact on the reader will be maximized if the text is well-crafted in organizational appropriateness and writing style." The report also states, "Fortunately, the use of a few best practices for the planning and writing of policy can make a big difference in its effectiveness in reducing risk."
We also put together a collection of blogs, presentations, reports and videos to help people develop answers to their application security policy questions — answers that will work within their organizations. For example, Tim Jarrett, senior director of product marketing, answers three questions about the application security policy management capabilities within the CA Veracode platform:
Check it out, and let us know what you think.