January 2021 TASK: Quantifying Application Security Risk

Wednesday 27-January-2021 // 6:00 – 7:00 PM
Meeting Location: Virtual – Register here to gain access


January TASK (Virtual)

Speaker: Adam Burek
Topic: Quantifying Application Security Risk / Ideas to Bring Structure to Vulnerability Management

There is an abundance of vulnerably sources scattered throughout the organization in code analysis tools, penetration reports, and other formats. Gaining a holistic view of the security posture of applications and conveying it effectively can prove challenging and yet really useful.

In this talk, I will discuss my findings and existing research regarding how to predict if a vulnerability is likely to pose a greater threat in the future with some quantitative approaches sprinkled in. As well, I will go over my proposed framework to aggregate vulnerability information with useful signals to monitor.

This would help to better measure the cybersecurity risk of an application and better predict what vulnerabilities are likely to pose a greater threat in the future.

Adam Burek is a recent Sheridan Information Security Graduate. On his Coop term at Mackenzie Investments, he first came across vulnerability management and has continued to dive deeper into this topic through his capstone project. Among his other roles, he was recently involved in a local startup where he worked as a python API developer and cloud specialist.


A special thanks to Zoom for making this happen.
Sincerely,
The TASK Steering Committee

Posted in Events.