AsTech and WhiteHat Bring Out White Paper on Security Incentives Programs [Travel & Leisure Close - Up]
(Travel & Leisure Close - Up Via Acquire Media NewsEdge) A white paper authored by application security leaders WhiteHat Security and AsTech Consulting suggests the incentives used by gamers could result in more secure applications and other security operations.
"Application security professionals are great at what they do, but the only time they get recognized is when something goes wrong," said Greg Reber, founder and CEO of AsTech Consulting. "This is a proven way to incentivize and engage the team toward the goal of creating a more secure and sustainable security environment."
According to a release, "Shall We Play a Game? How to design and implement a positive security incentives program" defines steps to establishing the foundation of a security incentives program, including identifying stakeholders, defining metrics, and having a back-up plan in the event of a security breech. It uses the case study of salesforce.com to demonstrate how motivating factors, like competition and self-expression, and gaming concepts, like mastery and autonomy, can lead to a more engaged information security team and program. For example, rewards go to individuals or teams who reach the next "level" in eliminating XSS or SQK injection vulnerabilities.
((Comments on this story may be sent to firstname.lastname@example.org))
(c) 2014 ProQuest Information and Learning Company; All Rights Reserved.
[ Back To TMCnet.com's Homepage ]