Disclosures 2012: The Vulnerability of Publicly Traded Companies
Date: Thursday, May 10th
Time: 11:00 a.m. ET/ 8:00 a.m. PT
The proliferation of cyber attacks that we have witnessed in the past year has sparked intense interest in the disclosure of cybersecurity risks by public companies. Public companies are subject to greater compliance requirements, generally have more funding, and were recently encouraged by the SEC to disclose material cybersecurity risks in their SEC filings. Therefore, Veracode's State of Software Security feature supplement focuses on understanding whether public companies' software security posture is different or even better than all companies in general and what material risks they face due to the weaknesses in their software applications.
We analyzed data from 126 public companies who analyzed applications on our platform during the last 18 months. We report on the most prevalent vulnerability categories in public company software applications, security compliance against industry standards, and estimate the basic security knowledge of developers. We also examine what public companies are doing to manage the risks inherited from commercial software, outsourced software and third-party frameworks and libraries that are the building blocks of internal software development.
In this webinar you will learn:
- What vulnerabilities commonly occur in software in the public companies and how they are linked to cybersecurity risks?
- Why so many applications are vulnerable to industry standard lists of the most frequently exploited application vulnerabilities?
- What factors influence key decisions and policies regarding application security in an organization?.
Chris Wysopal, Co-Founder, CTO & Chief Information Security Officer, Veracode