September 22, 2021

The Open Product Security Project

Hi,

In the past few years, we see a rise in product security, adding new responsibilities to both security, dev, and DevOps teams. In my previous company, I saw it first hand and saw how organizations struggle to build, execute and govern the right product security program for their needs. I thought it would be great to build an open project that will be the go-to place for product security, where devs, security stakeholders and ops can gain value. I’m thinking about a portal that will have everything you need in product security. To start, I thought about the following:

1. Full list of all categories, tools, companies, open-source tools for AppSec, CloudSec, etc.
2. Articles and blogs.
3. Open-source libraries list (with how to configure) to bake in security to your software.
4. Best practices for product security from industry experts.
5. List of product security programs.

What are your thoughts? Are you in product security and would like to contribute?

Happy to hear your thoughts,

Yaniv

Disclaimer – this is not a commercial project and doesn’t intend to be one, it will be built by contributors.

Comments

Jayme_Pollie

Sounds like a great idea.It’s becoming increasingly difficult to wrap your head around the trends, new tools and new threats in the product security space.
IMO, there are two main challenges:

1. Sounds like a great idea. It’s becoming increasingly difficult to wrap your head around the trends, new tools and new threats in the product security space.IMO, there are two main challenges:
2. Taking the results from all of these tools into a single pane of glass, correlating them and creating a remediation plan.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.