Mr. Fisch runs FortMesa, a SaaS-based cyber risk management and security operations platform that makes cybersecurity service delivery...More
The Open Web Application Security Project (OWASP) Top 10 for 2017 is based primarily on 40+ data submissions from firms that specialize in application security and an industry survey that was completed by 515 individuals. This data spans vulnerabilities gathered from hundreds of organizations and over 100,000 real-world applications and APIs. The Top 10 items are selected and prioritized according to this prevalence data, in combination with consensus estimates of exploitability, detectability, and impact. A primary aim of the OWASP Top 10 is to educate developers, designers, architects, managers, and organizations about the consequences of the most common and most important web application security weaknesses. We'll provide basic techniques to protect against these high risk problem areas, and provides guidance on where to go from here.